Options
Yahoo fixes e-mail security flaw
Yahoo has reportedly fixed a flaw in its Web based e-mail service that exposed Yahoo Mail users to serious attacks, including the interception of personal data.
[blockquote]Yahoo's mail service contained a so-called malicious script execution flaw, according to Finjan. An attacker could send an e-mail containing malicious script and that code would automatically run once the user opened the message, the company said.
If successful, an attacker could delete files on a victim's computer, steal personal information such as usernames and passwords, credit card numbers and any other information a user inputs on his computer, according to Finjan.
"The potential was huge, you basically could infect millions of Yahoo users within an hour," said Shlomo Touboul, Finjan's chief executive officer. When the malicious script runs, the attacker gains full control of a user's machine, he said.
[/blockquote]
[link=http://www.infoworld.com/article/03/12/10/HNyahooflaw_1.html]Read more[/link]
[blockquote]Yahoo's mail service contained a so-called malicious script execution flaw, according to Finjan. An attacker could send an e-mail containing malicious script and that code would automatically run once the user opened the message, the company said.
If successful, an attacker could delete files on a victim's computer, steal personal information such as usernames and passwords, credit card numbers and any other information a user inputs on his computer, according to Finjan.
"The potential was huge, you basically could infect millions of Yahoo users within an hour," said Shlomo Touboul, Finjan's chief executive officer. When the malicious script runs, the attacker gains full control of a user's machine, he said.
[/blockquote]
[link=http://www.infoworld.com/article/03/12/10/HNyahooflaw_1.html]Read more[/link]
0