If you run the macOS/OS X version of Skype, updating it now would be a really good idea. Trustwave’s SpiderLabs analysts discovered a hidden backdoor in Skype for Apple’s macOS and Mac OS X operating systems that could be used to spy on users’ communications without their knowledge. The backdoor, which has apparently been around since 2010 could allow any malicious third-party app to bypass authentication procedure and provide nearly complete access to Skype on macOS/OS X. Meaning:
- Read notifications of incoming messages (and their contents)
- Intercept, read and modify messages
- Log and record Skype call audio
- Create chat sessions
- Retrieve user contact information
None of that is good of course, but the issue is fixed in Skype version 7.37 and later. Thus if you use Skype, you should check to see if you’re running 7.37 or later to keep yourself safe. And you should do it soon as there is proof of concept code out there as I type this. Which means that the bad guys will have attack code shortly.
Related
This entry was posted on December 15, 2016 at 10:52 am and is filed under Commentary with tags Skype. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
macOS/OS X Users Of Skype Should Update NOW Due To 6 Year Old Backdoor
If you run the macOS/OS X version of Skype, updating it now would be a really good idea. Trustwave’s SpiderLabs analysts discovered a hidden backdoor in Skype for Apple’s macOS and Mac OS X operating systems that could be used to spy on users’ communications without their knowledge. The backdoor, which has apparently been around since 2010 could allow any malicious third-party app to bypass authentication procedure and provide nearly complete access to Skype on macOS/OS X. Meaning:
None of that is good of course, but the issue is fixed in Skype version 7.37 and later. Thus if you use Skype, you should check to see if you’re running 7.37 or later to keep yourself safe. And you should do it soon as there is proof of concept code out there as I type this. Which means that the bad guys will have attack code shortly.
Share this:
Like this:
Related
This entry was posted on December 15, 2016 at 10:52 am and is filed under Commentary with tags Skype. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.