The recent Gmail bug poses a serious security threat to users. The spammers can access your Gmail accounts if you open Gmail and browse the web. It is due to the fact that Google keeps user's account details in a JS file.
The Engadget reports, 'we hate to break the bad news at the dawn of the new year but there's a weakness in Gmail which exposes your email address to any web site capable of exploiting the bug. As reported on Digg, the exploit takes advantage of the fact that Google puts your details into a JS file. As a result, if you're logged into Gmail and browsing the web, any rogue website can declare the function "google" and then parse all your contacts.”.