All the latest UK technology news, reviews and analysis
|
|
|
17 Sep 2001
A hacker has discovered a new way to attack MSN's Hotmail email system. 'Oblivion' told members of security mailing list bugtraq of a way to smuggle code through Microsoft Javascript filters by adding it to the 'From' line of messages sent to Hotmail users.
The code could be used to redirect users to a hacker-owned web page that could trick them into divulging their Hotmail passwords. Once the user revisits their Inbox, the hacker can then read or delete email or send new messages under the user's name.
Microsoft has said it is investigating the new exploit, but has yet to comment further.
Hotmail has faced numerous Javascript-related security problems over the last three years, and has battled to close loopholes as hackers discover new gaps.
Latest stories from Security
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
TFL director of Games transport Mark Evers discusses how the public transport network is preparing for this summer's event
Connect with V3.co.uk
The wrong printers, for the wrong tasks on the wrong contracts
Who leads the BI pack and who should we be watching out for?
Opportunity to join a rapidly expanding Microsoft Consultancy...
Technical Architect - UC/Video Conferencing/VAAS Inspire...
A busy organisation in Glasgow is looking for a skilled...
Test, Python, Shell, Automation, Manual My client...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?