Software giant fixes flaw, could face massive penalty
Published:
10 May 2003 y., Saturday
Microsoft acknowledged a security flaw Thursday in its popular Internet Passport service that left 200 million consumer accounts vulnerable to hackers and thieves — an admission that could expose the company to a hefty fine from U.S. regulators.
Microsoft said it fixed the problem early Thursday, after a Pakistani computer researcher disclosed details of it on the Internet. Product Manager Adam Sohn said the company locked out all accounts it believed had been altered using the flaw. He declined to say how many people were affected but said it was a small number.
Several security experts said they had successfully tested the procedure overnight. Sohn said the flaw had apparently existed since at least September 2002, but Microsoft investigators have found no evidence anyone tried to use the technique to seize a Passport account before last month.
Passport promises consumers a single, convenient method for identifying themselves across different Web sites and encourages purchases online of movies, music, travel and banking services.
Closely tied to Microsoft’s flagship Windows XP software, Passport also controls access for Windows users to the free Hotmail service and instant-messaging accounts.
Šaltinis:
msnbc.com
Copying, publishing, announcing any information from the News.lt portal without written permission of News.lt editorial office is prohibited.
The most popular articles
Software company announced new structure_ of it_s business.
more »
INTERVIEW: Fraud victim describes mistrust of ATMs in Nigeria.
more »
Cisco announced today it has been selected to provide Internet Protocol (IP) video network infrastructure and video-encoding solutions to NBC during the network's coverage of the 2008 Beijing Olympic Games, Aug. 8-24.
more »
Q&A: Executives from MSN, NBC and Microsoft offer details behind the largest online broadcasting event in history.
more »
The goal of the initiative is to promote open collaboration among industry, academia and governments by removing the financial and logistical barriers to research in data-intensive, Internet-scale computing.
more »
Platforms & Services Division to Split Into Two Groups and Report to CEO Steve Ballmer.
more »
More can be done to ensure that people can be confident that their privacy will be protected online.
more »
A UK crime survey shows credit and debit card fraud has reached a record high of £535 million.
more »
New security measures underscore commitment to protect certification integrity and value.
more »
Sparkasse KölnBonn has just concluded a framework agreement with Wincor Nixdorf. The agreement covers more than 500 devices.
more »
Aladdin Knowledge Systems Ltd. (NASDAQ: ALDN), an information security leader specializing in authentication, software DRM and content security, today announced financial results for the second quarter of fiscal year 2008.
more »