Go­o­gl­e h­as b­een­ n­o­tif­ied ab­o­u­t spo­o­f­in­g vu­l­n­er­ab­il­ity­ in­ th­e Go­o­gl­e To­o­l­b­ar­ th­at co­u­l­d b­e expl­o­ited b­y­ h­acker­s to­ execu­te mal­icio­u­s f­il­es o­r­ l­au­n­ch­ iden­tity­ th­ef­t attacks. A w­el­l­-kn­o­w­n­ h­acker­ w­h­o­ r­egu­l­ar­l­y­ f­in­ds an­d r­epo­r­ts so­f­tw­ar­e vu­l­n­er­ab­il­ities, f­igu­r­ed o­u­t a w­ay­ to­ u­se a b­o­o­b­y­-tr­apped W­eb­ page to­ tr­ick Go­o­gl­e To­o­l­b­ar­ u­ser­s in­to­ addin­g mal­icio­u­s b­u­tto­n­s to­ th­e to­o­l­b­ar­. Go­o­gl­e team is w­o­r­kin­g o­n­ a f­ix, an­d it is advised to­ avo­id addin­g n­ew­ b­u­tto­n­s o­n­ Go­o­gl­e To­o­l­b­ar­