A security flaw in Amazon's Kindle software could allow hackers to access your Amazon account details. Benjamin Daniel Musser, a security researcher, discovered the issue, which arises when downloading ebooks from websites other than Amazon itself. The "Manage Your Kindle" page contains a security hole that can be exploited by attackers hiding malicious lines of code within ebooks. Once the Kindle Library has been loaded with a corrupted ebook (usually with a subject containing: <script src="https://www.example.org/script.js"), the hacker can access the user's cookies and, hence, their account credentials. Detailing the problem in a blog post, Musser discovered the issue back… [Continue Reading] Continue reading at 'Betanews'
[ Betanews | 2014-09-17 00:00:00 UTC ]