HTML E-Mail Security Concerns{2}

by Daniel S
Carl Both had discovered a flaw within Microsoft and Netscape programs that allows forwarded e-mails to be traced and read. After dabbling around with JavaScript, he had discovered that by adding a certain line of code into any e-mail, he would be able to have access to it once someone forwards that e-mail as long as they too were using HTML/Java-enabled readers. In disbelief, he had tested out this discovery amongst a handful of friends, and sure enough, every forwarded e-mails, along with the comments were being copied and sent to Carl. After contacting Microsoft, he received a reply back that they too acknowledge about the known problem, however they were not going to do anything about it due to customer convenience.

This ties in with our class because we are currently learning about HTML. I figured since most students would write about HTML5, I wanted to be a little bit different, and talk about there security concerns amongst HTML/JavaScript. Even though this article was written back in 2001, and is a little out dated, I think it is still relevant as security is always a concern to a consumer. I was also surprised to see how Microsoft rather choose customer convenience over protecting their customers.

Source:¬†Scheeres, J. (2001, February 6). Friends Don’t E-Mail Friends HTML.¬†Wired. Retrieved April 15, 2012, from