Windows Phone currently suffers from a security vulnerability when synchronising email to and from POP3 / IMAP / SMTP servers using SSL, according to a recent filing over at the US-CERT (United States Computer Emergency Readiness Team) website. The issue is pinpointed to Microsoft's mobile OS not verifying CN (Common Name) of server certificates when connecting to servers using SSL.
This opens up a potential threat from a man-in-the-middle attack, which would enable someone to view login or session data in the corresponding protocol (SMTP, POP3, etc.) Good news is Microsoft is reportedly aware of the security vulnerability and plans to release an update to address the issue.
Microsoft is looking to crank up security in its products, particularly Windows Phone 8. We've previously looked at how the company will be improving security in the next major version of Windows Phone.
Source: US-CERT; thanks, Yotsuba, for the heads up!
Dell's refreshed XPS 13 (9300) is tough competition for the Galaxy Book S
Samsung has released its ARM-based Galaxy Book S, and many are comparing it to the similarly sized Dell XPS 13 (9300). We break things down to help you make the right decision.
Microsoft's confident Xbox Series X news drip is a refreshing shift
Microsoft used to keep development pretty close to its chest, strewn through a lens of PR and over-thought marketing. Xbox seems to have turned a corner into something different.
Xbox Series X specs include 12 teraflops, confirms Microsoft's Phil Spencer
Phil Spencer, Head of Xbox, confirms that the Xbox Series X features 12 teraflops of computing power, in line with previous leaks from Windows Central.
Jazz up your XPS 15 with these great accessories
There are so many accessories that can help to enhance your Dell XPS 15 experience that you’d be remiss if you didn’t consider some of them. Here are a few of our favorites.