A serious flaw in how Firefox handles log-ons could be used by identity thieves to dupe users into disclosing passwords, a noted security researcher says.

A serious flaw in how Firefox handles log-ons could be used by identity thieves to dupe users into disclosing passwords, a noted security researcher said Wednesday.

Aviv Raff, an Israeli researcher best known for ferreting out browser flaws, revealed the Firefox spoofing vulnerability on his personal blog, and posted a demonstration video there. He did not go public with any proof-of-concept code or working exploit, however.

read more | source: PCWorld

—
Until then let’s be carefull when providing sites with our username/passwords

Popularity: 12% [?]

A flaw in Microsoft’s Windows Home Server could lead to data loss under certain circumstances, the company has confirmed.

Windows Home Server, released over the summer, aims to offer home users centralized media storage and home backup capabilities for networked PCs.

Microsoft last week updated a support document acknowledging that files edited using certain programs and then stored on Windows Home Server could become corrupted.

read more | source: Yahoo News

Popularity: 6% [?]