Canada’s first-ever Gmail login flaw has been found and has been fixed, the company announced.
The vulnerability, discovered by researchers at Microsoft Research in the US, could allow an attacker to send a malicious link or document to a Gmail account without the user knowing it.
Gmail has been under scrutiny for years over its security features.
The company said it has a patch available for the vulnerability and plans to release it in the coming days.
Google has not commented on the vulnerability.
“This is a vulnerability in how Gmail handles links in email messages,” a Google spokeswoman told Reuters.
“The vulnerability was found by a Microsoft researcher, and it is now being addressed.
We’re actively working with the Microsoft team to ensure it gets fixed quickly.”
Gmail was first introduced in 2006, and was first tested in 2008.
The feature allows users to send messages by email.
In March 2015, security researchers at GCHQ and Google released an exploit that exploited the flaw.
The researchers said the exploit was used to download malware from a computer, but it did not provide any evidence that it had been used to steal money or gain access to a targeted user’s account.
The Microsoft researchers said they were not aware of any other such vulnerability.
Google did not immediately respond to a request for comment.