I saw a blog post that Google/Gmail was affected, but I tested them yesterday - all good. They must have been quick.
@RickS: Technically, that's only if the site was compromised - that's what was thinking, even if it didn't come across that way (I haven't had my coffee yet) - but as there's no way to know for sure, then it's wise to do certificates, keys and passwords (including user passwords on those sites).
This sounds like it's as big as the DNS spoofing bug of 2008.
|