Software giant fixes flaw, could face massive penalty
Published:
10 May 2003 y., Saturday
Microsoft acknowledged a security flaw Thursday in its popular Internet Passport service that left 200 million consumer accounts vulnerable to hackers and thieves — an admission that could expose the company to a hefty fine from U.S. regulators.
Microsoft said it fixed the problem early Thursday, after a Pakistani computer researcher disclosed details of it on the Internet. Product Manager Adam Sohn said the company locked out all accounts it believed had been altered using the flaw. He declined to say how many people were affected but said it was a small number.
Several security experts said they had successfully tested the procedure overnight. Sohn said the flaw had apparently existed since at least September 2002, but Microsoft investigators have found no evidence anyone tried to use the technique to seize a Passport account before last month.
Passport promises consumers a single, convenient method for identifying themselves across different Web sites and encourages purchases online of movies, music, travel and banking services.
Closely tied to Microsoft’s flagship Windows XP software, Passport also controls access for Windows users to the free Hotmail service and instant-messaging accounts.
Šaltinis:
msnbc.com
Copying, publishing, announcing any information from the News.lt portal without written permission of News.lt editorial office is prohibited.
The most popular articles
Software company announced new structure_ of it_s business.
more »
If this week's border-transcending ruling by Germany's highest court proves anything, it's that an enormous distance remains between advocates of a free Internet and watchdogs against racism and hate-mongering.
more »
IBM Corporation announced Wednesday a new offering to deliver a range of business and technical services for the development of high-value corporate portals.
more »
A technique that exploits the way Web browsers store recently viewed data could compromise Internet users' privacy by allowing an attacker to check what sites a person has visited recently.
more »
Country music record company Fahrenheit Entertainment said it will begin selling copy-protected CDs by early next year using encryption technology from SunnComm, a little-known company based in Phoenix.
more »
Idea of "total war" redefined the conduct of armies against foreign populations in the mid-20th century.
more »
A Hong Kong-based company, I-Engine.com, has launched a wireless site development tool, I-WAP, that automatically builds and updates WAP sites.
more »
search.lt presents newest links
more »
If you're game for a challenge and desperate for money get hacking!
more »
Unlike Al Gore and George W Bush, St Chad's conduct during a disputed election helped him on his way to sainthood.
more »
Marked differences in the stages Europe's various national administrations have reached in moving towards e-government are highlighted in a new report from ICL.
more »