BBC: Hotmail Hole Exposes E-mails
Details of how to read other people's messages have been posted on a website run by a group called Root Core and it has quickly spread to other sites and newsgroups.
BetaNews: Hotmail Flaw Raises Questions Over XP Se
Late Sunday night, Root Core, a group of computer security experts, published information exposing vulnerabilities in Microsoft's popular service.
CNET News.com: Hotmail bug fix not a cure-all
The "fix" wasn't as comprehensive as Hotmail intended.
CNET News.com: Hotmail plugs security hole
Microsoft's Hotmail today claimed victory over the security holes that have put the free email firm on the hot seat this week.
CNET News.com: New security glitch for Hotmail
Security-minded programmers are finding holes in Microsoft's Hotmail faster than the free Web-based email service can plug them.
CNet: Cookies cap Hotmail security hole
Hotmail said it will mandate the use of cookies to plug a newly discovered security hole.
CNN: Status of Hotmail privacy unclear
Microsoft's Web-based e-mail service suffered a damaging blow to its integrity Monday when a security breach came to light that made it so anyone's Hotmail messages could be read. By Robin Lloyd.
HotMail JavaScript-in-Attachment Attack
Explanation of JavaScript in HTML attachments security hole, since fixed.
Microsoft Passport to Trouble
Describes a security hole by which a hacker can gain access to a user's Passport shopping profile by stealing their Hotmail cookie.
Register: MS Passport cracked with Hotmail
Passport authenticates a user for access to his credit cards and Web site accounts and passwords, to make life easy for on-line merchants and shoppers, and hackers and identity thieves. By Thomas C. Greene.
Register: Hacking Hotmail Made Easy
Some bright empiricist from Root-Core has discovered that anyone can log into their Hotmail account and then call messages from any other Hotmail account by crafting a URL with the second account's username and a valid message number. By Thomas C Greene.
Slashdot: Another Hole in Hotmail
Article and discussion of HTML attachment attack.
Slashdot: Hotmail Cracked Badly
Brief description of issue.
Slashdot: Hotmail Hacked
This isn't the first time that the folks who are gonna give us a internet wide universal login system had a hole. News and discussion.
Slashdot: Update: MS Says Hotmail "Security I
News and discussion.
TechTV: Hackers Discover Hotmail Hole
Hackers have discovered a security hole in Microsoft's free Hotmail email service that could allow intruders to read other people's messages.
Techweb.com: Microsoft Hotmail Password Breach Exp
Canadian engineers use JavaScript to show details of log-in information for the free e-mail service.
Telepolis: Turning Tides
The significance of the Hotmail crack. Article by Felix Stalder linking the problems at Hotmail with the Sun purchase of Star Division.
Wired: Did MS Dig Its Hotmail Hole?
The Hotmail security hole may have been an intentional backdoor that Microsoft built into its system for maintenance purposes, security experts said. By James Glave.
Wired: Hotel Hotmail
As outages and service problems continue to plague Microsoft's free email service Hotmail, users who try to cancel their accounts may be in for a surprise: They can't. By Polly Sprenger.
Wired: Hotmail Accounts Exposed to All
No sooner was one catastrophic security flaw closed Monday -- one that exposed millions of Hotmail accounts to prying eyes -- when another one appeared. By Declan McCullagh and Ja.
Wired: Hotmail Bug, Still an Open Book?
Security updates made last month to Microsoft's free email service, Hotmail, may have failed to fix the problem. Not only that, but privacy watchdogs fear that the fix might actually help the company analyze their users' Web browsing habits. By Michael Stutz.
Wired: Hotmail Hackers: 'We Did It'
A previously unknown group known as Hackers Unite has claimed responsibility for publicizing Hotmail's security breach, which Microsoft vehemently denied was the result of a backdoor oversight. By James Glave.
Wired: Hotmail Has a Hole - and a Fix
A Danish government official has reported a security hole that could allow unauthorized access to private accounts on Hotmail, the free Web email service. The company confirmed the hole exists and said Friday it would patch it within a day. By Michael Stutz.
Wired: Hotmail Open to Script Attacks
Tom Cervenka, a Web programmer at Canadian Specialty Installations, spent last week working on some clever coding to send to his Hotmail account. It tells users account access has been timed out and that they need to re-enter their account and password information. By Michael Stutz.
Wired: Microsoft Rights Hotmail
Microsoft has fixed a serious vulnerability in its Hotmail email program that tricks users into sending their usernames and passwords to an outside email address. By Michael Stutz.
Wired: Stealing MS Passport's Wallet
To correct serious security flaws, Microsoft on Friday disabled the virtual wallet function of its Passport service and has begun notifying partners about the vulnerabilities, the company has confirmed. By Brian McWilliams.
ZDNet: Huge Hotmail security flaw reported
In potentially one of the largest security e-mail breaches ever, a Web site may have allowed people access to millions of private Hotmail accounts.