Friday, October 31, 2014
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Pirate Bay co-founder 42 Months Imprisonment
SEL Showcases 1058ppi And Foldable OLED Displays
New Outlook for Mac Available Now, Office for Mac Coming In 2015
Updated BBM Offers More Privacy, Control and More
Panasonic Raises Profit Outlook
Toshiba Offers New 4TB and 5TB Desktop HDDs
Samsung Introduces New Ultra Slim Galaxy A5 and Galaxy A3 Smartphones For The Chinese Market
Sharp 2Q Profit Slides
Active Discussions
DVD/DL for Optiarc 7191S at 8X
Copied dvd's say blank in computer only
Made video, won't play back easily
New Features In Firefox 33
updated tests for dvd and cd burners
How to generate lots of different CDs quickly
Yamaha CRW-F1UX
help questions structure DVDR
 Home > News > General Computing > Skype T...
Last 7 Days News : SU MO TU WE TH FR SA All News

Wednesday, November 14, 2012
Skype Tackles Hack Vulnerability (updated)


Skype has suspended its password reset function after reports that the feature could be used to hijack the service's accounts.

The vulnerability, which emerged on a Russian blog about three months ago, could have exposed answerphone messages, old text message conversations and user details including date of birth.

Skype is looking into the problem.

"We have had reports of a new security vulnerability issue," said engineer Leonas Sendrauskas.

"As a precautionary step we have temporarily disabled password reset as we continue to investigate the issue further. We apologise for the inconvenience but user experience and safety is our first priority."

The hack involves using a victim's Skype-registered email address to create a new account which is also linked to an email account owned by the attacker.

If a password change is then requested using the target's username, the hijacker can access the resulting reset token via the Skype app itself using the newly-created bogus log-in.

The security hole was confirmed by The Next Web.

The news comes amid Microsoft's efforts to convince members of its Windows Live Messenger chat tool to switch to Skype.



Update

After temporarily removing the ability to reset passwords while it worked on a solution, Skype has now issued a fix for the security bug. The company also issued the following statement:

"Early this morning we were notified of user concerns surrounding the security of the password reset feature on our website. This issue affected some users where multiple Skype accounts were registered to the same email address. We suspended the password reset feature temporarily this morning as a precaution and have made updates to the password reset process today so that it is now working properly. We are reaching out to a small number of users who may have been impacted to assist as necessary. Skype is committed to providing a safe and secure communications experience to our users and we apologize for the inconvenience."


Previous
Next
Google Fiber Installations In Kansas Homes Started        All News        WD Unveils 802.11AC Wireless Router and Bridge for Maximum Wi-Fi Speeds
Google Fiber Installations In Kansas Homes Started     General Computing News      Latest Chrome Secures Flash Player For Mac Users

Get RSS feed Easy Print E-Mail this Message

Related News
Skype Qik Keeps You Engaged Between Calls
Latest Skype For Windows Phone Brings Cortana Integration
Microsoft Demos Real-time Translation For Skype
Group video Calls on Skype Now Free on Windows desktop, Xbox One and Macs
Skype for Outlook.com Now Globally Available
European Court Rejects Cisco's Challenge Of Microsoft-Skype Deal
Microsoft Fights Back Against Skype Censorship in China
Skype for Windows 8 Gets Enhanced HD Video Support
Skype Connected With Lync
Outlook.com Integrates Skype
Skype for Windows 8 Updated
Skype Offers Video Messaging Trial

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2014 - All rights reserved -
Privacy policy - Contact Us .