Yahoo Fixes E-Mail Service Security Flaw

Yahoo has fixed a flaw in its Web-based e-mail service that exposed Yahoo Mail users to serious attacks, including potential interception of personal data, security company Finjan Software said this week. An attacker could send an e-mail containing malicious script and that code would automatically run once the user opened the message, according to Finjan. The script code can be written in various programming languages, including Java, JavaScript, VB Script, Active X and HTML, according to Finjan.

Read the full story at Network World