The Information Security Research Team (INSERT) claims to have discovered a security flaw in Gmail that allows a spammer to send thousands of bulk e-mails through Google's SMTP service undetected, bypassing both Google's ID fraud protection mechanisms and its 500-address limit on e-mail.
