I read online the other day that an exploit for Firefox was reported 10 days ago. As of yet, there is still no fix. It is allowing attackers access to Google accounts, including Gmail.
“Mozilla has taken another security blow with the discovery that Google user accounts can be accessed through a dangerous Firefox exploit.”
“A 302 redirect error in Google, discovered by bedford.org’s Morgan Lowtech aka tx, creates a domain-wide cross-site scripting attack allowing hackers to gain access and modify Google user accounts including e-mails, contact lists and online presence. ”