Safety Issue potentially serious, although easy resolution to Amazon : a researcher specializing in computer security has brought to light a flaw present in the page “Manage Your Kindle” that can be exploited to gain access to the account in an unauthorized manner Amazon users. An attacker could indeed get the access to the Amazon by simply bringing their victims to download a eBook modified in such a way as to contain a special script in the title . Once the book is added to the digital library of the victim, the code will be executed when the page web of Kindle Library. The script could then lead to access and transfer cookies to the attacker Amazon, with the ultimate consequence of the impairment of the victim’s account Amazon. For the near future it is therefore recommended to all those who habitually use the Manage Your Kindle page to manage your digital library not to download ebook from untrusted sources. As I said it is a problem easy to solve and indeed Amazon has already settled nearly a year ago. The vulnerability has in fact been discovered in October last year and notified the following month to the company of Jeff Bezos, who has solved the problem promptly. The flaw, however, has come back after that Amazon has made available a new version of the Manage Your Kindle page in recent months.
No comments:
Post a Comment