Microsoft investigating IE bug
A Google security engineer claims that a bug in Internet Explorer 8 can be used to access users' data and their web accounts, so that an attacker could do such things as send unauthorized tweet's from a user's Twitter account. It's the CSS cross-origin theft bug that's been tracked by researchers at Carnegie-Mellon for several years. IE 9 fixes the vulnerability and Microsoft has issued a statement that they're investigating, but are unaware of any actual attacks that attempt to use the claimed vulnerability. Read more here: