Passport Pickpocketed

by Rael Dornfest

Related link:,1282,48105,00.html

"By cobbling together a handful of browser-based bugs with flaws in Passport's authentication system, [the Apache Software Foundation's Marc] Slemko developed a technique to steal a person's Microsoft Passport, credit card numbers -- and all, simply by getting the victim to open a Hotmail message." For more tech nitty gritty, read Marc's "Microsoft Passport to Trouble."