Feeds

back to article Exploited Hotmail bug stole email without warning

Microsoft has patched a bug in its Hotmail email service that attackers were exploiting to silently steal confidential correspondences and user contacts from unsuspecting victims. The vulnerability was actively being exploited using emails that contained malicious scripts, Trend Micro researcher Karl Dominguez said Monday. …

COMMENTS

This topic is closed for new posts.
Gates Horns

I demand full and immediate disclosure!

Ha! Typical security for beginners by Microsoft. Ah well they probably deserve it. But how could they be so lax and allow such an attack. it's unthinkable, and they still cannot tell us how many people were affected?

Come on Microsoft! How many users affected, how much personal information at risk, what is Microsoft doing to mitigate the harm of this attack? I want to know, and I want to know NOW!

Perhaps Congress should get involved and demands some answers....like they did with Sony?

Hmmmm.,......?

1
1
Ru
Troll

On the contrary

They are clearly and demonstrably using industry standard security precautions.

0
0
Joke

Which Industry?

Methinks the Swiss Cheese Industry

2
0
Silver badge
FAIL

Geez

Hacking Hot Mail accounts? Are people out there THAT desperate to get more spam?

0
1

This post has been deleted by its author

Well...

s/get/send/

0
0

Hmmm ...

"The email purported to be a security warning concerning the victim's Facebook account."

I wonder. I got one of these a couple of weeks ago, about a week after my sister got a shiny new Hotmail account and emailed me from it. Fortunately, being of sound (ish) mind, I have no Facebook account, so doing nothing was easy. If the email I received was indeed one of these, the problem's at least two or three weeks old.

0
1
Stop

@Nebulo Your point is ???

Whats your sis setting up a Hotmail account got to do with anything. Or u having no online friends for that matter ??

0
1

Clearly...

... Microsoft has once more been attacked because it is so popular and dominant in the marketplace, and not because of any security failings per se.

2
0
Stop

RE: Clearly...

...and if there were no security failings then how was anyone able to hack their way in...?

Microsoft are legendary for having security holes you could drive a truck through (Swiss Cheese, as another poster commented)

0
0

Question

Does anyone know if Firefox's NoScript and/or the fact that Hotmail blocks links from unknown senders/possible spam would provide any protection against this?

0
0
Anonymous Coward

Still Happening

Found a pile of bounced mail in my account today. So I dont think its fixed yet. I havent signed on via any compromised machines. Last time I changed my password about 3 times and still had it happening.

0
0
This topic is closed for new posts.