Microsoft announced on Tuesday that it was adding full session SSL encryption for Hotmail. Microsoft had previously used SSL encryption only to secure connections at login. The insecurity of Web sessions has long been a bone of contention between security researchers and Web 2.0 firms, who have preferred accessibility and feature development over security. The demonstration of FireSheep at the ToorCon Conference in San Diego in late October unleashed a flood of news coverage, controversy and interest in the plugin. The plugin, developed by independent researcher Eric Butler and Ian Gallagher of Security Innovation, monitors unencrypted wireless networks.
Source: https://threatpost.com/firesheep-fallout-microsoft-adds-https-option-hotmail-110910/74656/