Welcome to WebmasterWorld Guest from 22.214.171.124
Forum Moderators: goodroi
the exploit takes advantage of the fact that Google puts your details into a JS file. As a result, if you're logged into Gmail and browsing the web, any rogue website can declare the function "google" and then parse all your contacts.
Best thing to do for now is to log out of google services and clear your cache, until the problem is fixed.