Skype update enables account theft – Update

The recent update to Skype 5.5 for Windows contains a severe security vulnerability that allows attackers to get control of your Skype account, according to security expert David Vieira-Kurz. The update promises close integration with Facebook – for instance, you are to be able to track your Facebook friends’ activities from your Skype client and even post wall messages from there. But it turns out that the process entails a real security risk, because the client executes JavaScript code in Facebook status messages without filtering.

Read more at H-online

Comments are closed.