Google fixed a major Gmail and G Suite spoofing bug seven hours after details and a PoC exploit were published
Bug was privately disclosed but Google didn't patch it in 137 days.
Credit: @ezhes_ - details here: https://ezh.es/blog/2020/08/the-confused-mailman-sending-spf-and-dmarc-passing-mail-as-any-gmail-or-g-suite-customer/
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!