Computing in the real world
SEARCH FOR: IN: Advanced Search
Guest  Level 00    Register Log in

News 

[PSUs]
Saturday 30th September 2000
BT caught out by Email loophole 12:00AM, Saturday 30th September 2000
A customer of BT's Talk21 email service has found he can access other user's email accounts.

Business user John Heaton made the discovery when trying to send out a marketing email on behalf of his business, Hotelkeeper.net. In theory, those that visited his site by clicking on a link from the email are tracked when they reach the site.

But instead of finding out his customer's movements, Heaton found he could access their email accounts if they were Talk21 customers. That meant he had all the user privileges of the account holders themselves and could send emails and delete documents.

"I was utterly astonished," said Heaton. He immediately contacted BT to inform them of the problem but heard nothing back. "I was angry I received no response from BT over such an appalling security flaw," he added.

When contacted, BT said it had no evidence of a security breach but was looking into the allegations.
Caroline Gilmour

Submit to: Digg  |  Slashdot  |  Del.icio.us  |  Technorati

Related News


Back to top
Compare Broadband
Broadband?
Compare 50+ packages
Enter your postcode below:
Powered by:
Top 10 Broadband
› See more News
› See more Hot topics

Columns

Prolog:

Tim Danton believes that we Brits need to become a bit more American to succeed. › See full Opinion
› See more Columns
›  See more Research Papers