CNET News.com: Hotmail hole raises larger security issuesAug 31, 1999, 21:04 (0 Talkback[s])
(Other stories by Joe Wilcox)
"A security hole discovered yesterday in Microsoft's MSN Hotmail calls into question the free email service's practice of allowing users to log on from any Web page, security experts said."
" 'I think [login programs are] a big mistake, said Richard Smith, president of Cambridge-based Phar Lap Software. 'If you log in from somebody else's Web page, they can equally bug the message to grab your username and password.' "
"The only solution, said security experts, is to restrict login access to a central page."