Earlier last week, a phishing attack affected a large number of Gmail users and now, the company is increasing requirements for its web application requirements to protect users from such attack in future. With the changes, Google is introducing new app publishing process, added assessment of risk involved and the look of the consent page.
With the upcoming changes, users won’t be affected but developers might face delay to publish their applications as if the risk assessment is triggered, it will go through manual review process. In case of such triggers, application won’t be able to collect data up until the review process is completed.
The latest attack happened after the attacker changed his web application to “Goggle Docs” and used the company’s UI to collect information. Although the application was removed later, it affected a large number of users.
Featured Image: Wikimedia Commons