Software giant fixes flaw, could face massive penalty
Published:
10 May 2003 y., Saturday
Microsoft acknowledged a security flaw Thursday in its popular Internet Passport service that left 200 million consumer accounts vulnerable to hackers and thieves — an admission that could expose the company to a hefty fine from U.S. regulators.
Microsoft said it fixed the problem early Thursday, after a Pakistani computer researcher disclosed details of it on the Internet. Product Manager Adam Sohn said the company locked out all accounts it believed had been altered using the flaw. He declined to say how many people were affected but said it was a small number.
Several security experts said they had successfully tested the procedure overnight. Sohn said the flaw had apparently existed since at least September 2002, but Microsoft investigators have found no evidence anyone tried to use the technique to seize a Passport account before last month.
Passport promises consumers a single, convenient method for identifying themselves across different Web sites and encourages purchases online of movies, music, travel and banking services.
Closely tied to Microsoft’s flagship Windows XP software, Passport also controls access for Windows users to the free Hotmail service and instant-messaging accounts.
Šaltinis:
msnbc.com
Copying, publishing, announcing any information from the News.lt portal without written permission of News.lt editorial office is prohibited.
The most popular articles
Software company announced new structure_ of it_s business.
more »
Consumers face a rising threat of online rip-offs, but they may be worried about the wrong thing
more »
Nokia's MMS Solution Enables TeliaSonera's pan-Nordic Multimedia Messaging Launch
more »
Companies will spend slightly more on IT services in 2003 than last year
more »
In North Korea's mountainous Hyungsan region, a military academy specializing in electronic warfare has been churning out 100 cybersoldiers every year for nearly two decades
more »
search.lt presents newest links
more »
Financial losses from computer crime are down significantly from last year according to the latest Computer Crime and Security Survey
more »
While many students would be expelled from their computer science programs for writing a virus, the University of Calgary plans to make writing such malicious programs a part of the curriculum
more »
hkhkronprinsen.dk - a personal Web site of Danish Crown Prince Frederik
more »
724 Solutions announced Radiolinja Eesti of Estonia will upgrade its messaging gateway to 724’s X-treme Mobility Gateway (XMG)
more »
EURID will manage .eu top-level domain
more »