Posts Tagged ‘cookie’ Cookie Hijacking Issue

Monday, December 17th, 2012

Whoops, it looks like somebody has uncovered another potential security problem for and users …

Users of or, Microsoft’s two email services, should take note now. Information are stored in cookies when you use the site including whether you have successfully authorized your account or not. If the information is available, you can open and close both services without having to log in again to one of them. That’s great as it is comfortable, but also problematic as it means that someone else can copy that cookie from your system to access your email account online without re-authorization.