There is a Dangerous Security Pass on Skype, Microsoft Reluctant to Fix it

in #skype7 years ago

For those of you who use Skype - especially Skype Desktop PC, should be more careful. There is a security hole in Skype that allows attackers to gain access to the system level. This security hole has actually been reported by security researcher Stefan Kanthak since September last year, it's just that Microsoft is reluctant to fix it because there's too much to change to close the security gap.

So this security hole allows the attacker to do DLL Hijacking, to outsmart Skype to - instead of writing the library it should - instead writing malicious malware code. This can happen because Skype updater runs another executable file vulneran; e for hijack.

If the attacker does that to Skype on your PC, then they have direct system access, so they can steal data, delete data, or even run ransomware to get ransom.

Microsoft did not plan to close this vulnerability, and chose to leave it alone until a new revamp edition of Skype was released later - slowly making this vulnerable Skype edition no longer valid. So until Skype's new edition is released, then this malicious security hole will still exist on Skype.

But this vulnerability exists only in Skype desktop version yes, for Skype UWP version of Store does not have this malicious security hole. So if you're a Skype user on Windows 10, you should uninstall the desktop version and replace it with the UWP version of Microsoft Store.

Sort:  

Congratulations! This post has been upvoted from the communal account, @minnowsupport, by WinPoin from the Minnow Support Project. It's a witness project run by aggroed, ausbitbank, teamsteem, theprophet0, someguy123, neoxian, followbtcnews, and netuoso. The goal is to help Steemit grow by supporting Minnows. Please find us at the Peace, Abundance, and Liberty Network (PALnet) Discord Channel. It's a completely public and open space to all members of the Steemit community who voluntarily choose to be there.

If you would like to delegate to the Minnow Support Project you can do so by clicking on the following links: 50SP, 100SP, 250SP, 500SP, 1000SP, 5000SP.
Be sure to leave at least 50SP undelegated on your account.