Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 internet speed test! ×
Security

Submission + - Skype Halts Password Resets as Massive Security Hole Discovered (ibtimes.co.uk)

An anonymous reader writes: A massive security hole has been found in Microsoft's Skype application, where it is possible to gain access to a user's account by knowing nothing more than their email address.

It is then possible to gain access to the target's account, change their password and associated email address, and lock them out for good, as any password reset requests by them will be sent to the new email address, not theirs.

UPDATE: Skype has since shut down its password reset tool while it investigates the issue. The company told IBTimes UK: "We have had reports of a new security vulnerability issue.

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Skype Halts Password Resets as Massive Security Hole Discovered

Comments Filter:

This is the theory that Jack built. This is the flaw that lay in the theory that Jack built. This is the palpable verbal haze that hid the flaw that lay in...

Working...