Yahoo has fixed a potential security flaw in its email service that could have allowed hackers to hijack Yahoo email accounts.
The problem was discovered earlier in August by Nir Goldshlager and Roni Bahar of Israeli security company Avnet.
Once acquired, the cookie would provide access to the email session and hence the email inbox to read, send and delete emails.
A recipient would have to open only the malicious email, not the attachment too.
Although the mail cookie would not have given the hacker password control over the email account directly, once the email session had been hijacked the hacker could have gained the password by using the facility offered by Yahoo (and all other mail providers) to email passwords to customers who have forgotten them.
After identifying the vulnerability, Bachar and Goldshlager immediately alerted Yahoo.
Geoengineering on the sea floor near glaciers would form a new ice shelf to prevent melting
Alterations in capillary blood flow can be caused by body position change
Curiosity rover is in 'normal mode' but not transmitting scientific data back to base
NatWest outage comes a day after Barclays' IT systems shut out customers and staff