Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
Security

Submission + - Skype Halts Password Resets as Massive Security Hole Discovered->

An anonymous reader writes: A massive security hole has been found in Microsoft's Skype application, where it is possible to gain access to a user's account by knowing nothing more than their email address.

It is then possible to gain access to the target's account, change their password and associated email address, and lock them out for good, as any password reset requests by them will be sent to the new email address, not theirs.

UPDATE: Skype has since shut down its password reset tool while it investigates the issue. The company told IBTimes UK: "We have had reports of a new security vulnerability issue.

Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Skype Halts Password Resets as Massive Security Hole Discovered

Comments Filter:

IBM Advanced Systems Group -- a bunch of mindless jerks, who'll be first against the wall when the revolution comes... -- with regrets to D. Adams

Working...