News Burst: Security flaw in Hotmail's Passport

A flaw that lets unauthorised users access to Hotmail Passport accounts after it has been left without the authorised user logging off has been discovered by security enthusiast Pete Krawczyk.

Microsoft's Passport service allows users to access certified Web sites from their Hotmail account and even retains credit card number.

This comes just weeks after it was revealed that it was possible to access any Hotmail account using a simple CGI script.

Full story to follow