also @ TechSpot: Rumor: AMD "Piledriver" FX CPU production to begin Q3 2012

Yahoo's Zimbra flaw reveals users' passwords

By

On September 29, 2008, 7:55 PM EST

Yahoo is suffering today from both a security breach and some serious embarrassment after it was discovered that their Zimbra e-mail client was exposing sensitive data. The flaw was discovered during a recent Yahoo University hack day where a Canadian programmer noticed that passwords of Yahoo's email accounts were being sent in plain text format through the Zimbra client due to a Yahoo IMAP server not supporting SSL encryption.

Reportedly, Yahoo was notified of the problem, but the company didn't give any feedback as to whether or not they were addressing the problem. Zimbra, however, has said that they have already fixed the issue upstream, and the next release of the client will come with a fix built-in. The recommendation for Zimbra/Yahoo account holders is to change their passwords immediately and stop using Zimbra until the next release is available.

Related Stories

No tags on this story

Post a comment

Post a new comment

Guest user

To post as an anonymous
user click here.

Members

If you are a TechSpot member,
please login first.


By signing up you gain complete access to the TechSpot community. Join thousands of computer and technology enthusiasts that contribute and share knowledge in our forum. Post messages, get a private inbox, upload your own photo gallery and more.

Most Popular

Trending Featured
More Trending Topics

Editors' Case Picks

Downloads & Drivers

Downloads   Drivers  

GMABooster 2.1a

HaoZip 2.8

Defraggler 2.10.413

The Cleaner 2012 8.1.0.1110

WinISO 6.2.0.4526

More Downloads

Related Discussion

Microsoft Security Essentials won't do a full scan

Problem with power supply

[UDK] Critical Point - Incursion

Could it be the graphics card?

Compaq Presario CQ61 screen LCD cable change but not working

More at the Forums

Subscribe to TechSpot

Get free exclusive content, learn about new features and tech breaking news.