Just when you thought your Gmail was safe, hackers have found a way to hijack your email accounts. This was revealed some months ago when Gmail customer support started getting concerned letters about the amount of spam received in their Gmail accounts.

This phenomenon is caused by hackers hijacking your Gmail account newsletter gmail a technique called Cross Site Request Forgery (CSRF), Techniques requires that you click a link on a dummy hacker site, spam mail or a pop up ad while logged into your Gmail account. This action can transplant a digital spy in the form of a cookie or java script code into your PC. When your Gmail account is open, this digital spy tricks your web browser into sending an invisible request to Gmail servers.

This request could be to download your account data, your contact list, or your emails. As long as you kept your Gmail account open the digital spy could download info uninterrupted until you logged out of your account. This technique could also load spam and other hacker scripts into your Gmail account. The stolen information would be used to pilfer other account information. Or hackers can profit by selling the Gmail account info to spammers for the highest price.

Google was able to respond to the Gmail flaw quickly by tightening up their security structure. But, the CSRF attack can work also with your Google Toolbar and other websites, not only Gmail. If hackers are able to hijack your Gmail accounts, this technology could be used to request financial information when you’re a doing online transactions. There have been reports that CSRF attacks were able to initiate the transfer money by embedding a java script code in the web browsers during online banking activity.

1. Never instruct your browser to remember your login information. This allows hackers to easily enter your trusted sites using a hijacked web browser.

A CSRF technique relies primarily on the users’ ignorance and trust they have for major websites. There are techniques that would reduce this kind of attack from happening. Here is a simple strategy to stop hackers from stealing your online information.