Passport Pickpocketed

by Rael Dornfest

Related link: http://www.wired.com/news/technology/0,1282,48105,00.html



"By cobbling together a handful of browser-based bugs with flaws in Passport's authentication system, [the Apache Software Foundation's Marc] Slemko developed a technique to steal a person's Microsoft Passport, credit card numbers -- and all, simply by getting the victim to open a Hotmail message." For more tech nitty gritty, read Marc's "Microsoft Passport to Trouble."