Yahoo! and Hotmail increase site security

Free e-mail service providers Yahoo! and Hotmail have taken steps to increase site security by repairing cross-site scripting holes. The patched up service should thwart hackers who attempt to spread malicious Melissa-type worm viruses.

  • E-Mail
By  Matthew Southwell Published  June 5, 2001

Free e-mail service providers Yahoo! and Hotmail have taken steps to increase site security by repairing cross-site scripting holes. The patched up service should thwart hackers who attempt to spread malicious Melissa-type worm viruses.

The problem, identified by security researcher Matt Parcens, stemmed from Javascript contained within the victims e-mail. Once opened, the escaped Javascript acted as a link to the service provider’s server from where the virus could be sent to every email address within the victim’s inbox.

Other Web mail services should take note however, as Parcens believes that theoretically, at least, more services are vulnerable due the proliferation of these holes.

Add a Comment

Your display name This field is mandatory

Your e-mail address This field is mandatory (Your e-mail address won't be published)

Security code