Microsoft has patched a bug in its Hotmail email service that attackers were exploiting to silently steal confidential correspondences and user contacts from unsuspecting victims. The vulnerability was actively being exploited using emails that contained malicious scripts, Trend Micro researcher Karl Dominguez said Monday. …
I demand full and immediate disclosure!
Ha! Typical security for beginners by Microsoft. Ah well they probably deserve it. But how could they be so lax and allow such an attack. it's unthinkable, and they still cannot tell us how many people were affected?
Come on Microsoft! How many users affected, how much personal information at risk, what is Microsoft doing to mitigate the harm of this attack? I want to know, and I want to know NOW!
Perhaps Congress should get involved and demands some answers....like they did with Sony?
On the contrary
They are clearly and demonstrably using industry standard security precautions.
Methinks the Swiss Cheese Industry
Hacking Hot Mail accounts? Are people out there THAT desperate to get more spam?
"The email purported to be a security warning concerning the victim's Facebook account."
I wonder. I got one of these a couple of weeks ago, about a week after my sister got a shiny new Hotmail account and emailed me from it. Fortunately, being of sound (ish) mind, I have no Facebook account, so doing nothing was easy. If the email I received was indeed one of these, the problem's at least two or three weeks old.
@Nebulo Your point is ???
Whats your sis setting up a Hotmail account got to do with anything. Or u having no online friends for that matter ??
... Microsoft has once more been attacked because it is so popular and dominant in the marketplace, and not because of any security failings per se.
...and if there were no security failings then how was anyone able to hack their way in...?
Microsoft are legendary for having security holes you could drive a truck through (Swiss Cheese, as another poster commented)
Does anyone know if Firefox's NoScript and/or the fact that Hotmail blocks links from unknown senders/possible spam would provide any protection against this?
Found a pile of bounced mail in my account today. So I dont think its fixed yet. I havent signed on via any compromised machines. Last time I changed my password about 3 times and still had it happening.
- IT bloke publishes comprehensive maps of CALL CENTRE menu HELL
- Analysis Who is the mystery sixth member of LulzSec?
- Comment Congress: It's not the Glass that's scary - It's the GOOGLE
- Analysis Hey, Teflon Ballmer. Look, isn't it time? You know, time to quit?
- Murdoch Facebook gloat: You're like my $580m, 'CRAPPY' MySpace