|
|
 |
|
|
Pages: 1
More woes for Microsoft - MS Passport
(Click here to view the original thread with full colors/images)
Posted by: Gunslinger
As the title indicates, yet another hole has been found in Microsoft's Passport system. According to <a href="http://www.wired.com/news/technology/0,1282,48105,00.html">this</a> article, a malicious user can gain access to everything in the user's Passport Wallet - including credit card numbers, contact information, and the attacker has the ability to steal the passport itself. Access is gained merely by the victim opening a certain e-mail through Microsoft's Hotmail mail service.
<i>In a demonstration of the exploit earlier this week, [Slemko] sent Wired News a specially crafted but innocent-looking e-mail. Moments after the e-mail was viewed using Microsoft's Hotmail Web-based e-mail service, [Slemko] rattled off, over the phone, the credit card number and contact information from the user's Passport wallet.</i>
I really don't know what to say about this. I don't use hotmail, but millions of people do - and millions of people have faith in Microsoft to be able to protect their most sensitive information. What does this mean for the unsuspecting user? Hopefully, we'll see a patch for this in the typical, timely Microsoft fashion. Right...
<font size="1">Source: <b><a href="http://www.wired.com" target="_new">Wired</a></b>
Posted by: Gunslinger
Blah. Pesky changers of icons. I smite thee.
Posted by: Canis Lupus
|
|
|
|
|
