Microsoft Passport to Trouble
Describes a security hole by which a hacker can gain access to a user's Passport shopping profile by stealing their Hotmail cookie.
Register: MS Passport cracked with Hotmail
Passport authenticates a user for access to his credit cards and Web site accounts and passwords, to make life easy for on-line merchants and shoppers, and hackers and identity thieves. By Thomas C. Greene. (November 5, 2001)
Wired: Stealing MS Passport's Wallet
To correct serious security flaws, Microsoft on Friday disabled the virtual wallet function of its Passport service and has begun notifying partners about the vulnerabilities, the company has confirmed. By Brian McWilliams. (November 2, 2001)
BetaNews: Hotmail Flaw Raises Questions Over XP Security
Late Sunday night, Root Core, a group of computer security experts, published information exposing vulnerabilities in Microsoft's popular service. (August 21, 2001)
BBC: Hotmail Hole Exposes E-mails
Details of how to read other people's messages have been posted on a website run by a group called Root Core and it has quickly spread to other sites and newsgroups. (August 20, 2001)
Register: Hacking Hotmail Made Easy
Some bright empiricist from Root-Core has discovered that anyone can log into their Hotmail account and then call messages from any other Hotmail account by crafting a URL with the second account's username and a valid message number. By Thomas C Greene. (August 20, 2001)
Slashdot: Hotmail Hacked
This isn't the first time that the folks who are gonna give us a internet wide universal login system had a hole. News and discussion. (August 20, 2001)
TechTV: Hackers Discover Hotmail Hole
Hackers have discovered a security hole in Microsoft's free Hotmail email service that could allow intruders to read other people's messages. (August 20, 2001)
HotMail JavaScript-in-Attachment Attack
Explanation of JavaScript in HTML attachments security hole, since fixed. (October 5, 2000)
Slashdot: Another Hole in Hotmail
Article and discussion of HTML attachment attack. (May 10, 2000)
Telepolis: Turning Tides
The significance of the Hotmail crack. Article by Felix Stalder linking the problems at Hotmail with the Sun purchase of Star Division. (September 2, 1999)
Slashdot: Update: MS Says Hotmail "Security Issue" Resolved
News and discussion. (August 31, 1999)
CNN: Status of Hotmail privacy unclear
Microsoft's Web-based e-mail service suffered a damaging blow to its integrity Monday when a security breach came to light that made it so anyone's Hotmail messages could be read. By Robin Lloyd. (August 30, 1999)
Slashdot: Hotmail Cracked Badly
Brief description of issue. (August 30, 1999)
Wired: Did MS Dig Its Hotmail Hole?
The Hotmail security hole may have been an intentional backdoor that Microsoft built into its system for maintenance purposes, security experts said. By James Glave. (August 30, 1999)
Wired: Hotmail Accounts Exposed to All
No sooner was one catastrophic security flaw closed Monday -- one that exposed millions of Hotmail accounts to prying eyes -- when another one appeared. By Declan McCullagh and Ja. (August 30, 1999)
Wired: Hotmail Hackers: 'We Did It'
A previously unknown group known as Hackers Unite has claimed responsibility for publicizing Hotmail's security breach, which Microsoft vehemently denied was the result of a backdoor oversight. By James Glave. (August 30, 1999)
ZDNet: Huge Hotmail security flaw reported
In potentially one of the largest security e-mail breaches ever, a Web site may have allowed people access to millions of private Hotmail accounts. (August 29, 1999)
Wired: Hotel Hotmail
As outages and service problems continue to plague Microsoft's free email service Hotmail, users who try to cancel their accounts may be in for a surprise: They can't. By Polly Sprenger. (March 22, 1999)
CNet: Cookies cap Hotmail security hole
Hotmail said it will mandate the use of cookies to plug a newly discovered security hole. (March 19, 1999)
Results: 1 2 3 Next
Site
Menu 
