Skype vulnerability puts your iPhone at risk
posted by Nick T. / Sep 20, 2011, 7:19 AM
Those of you who use Skype on their iPhone might want to read carefully as a security flaw in the application has just recently been exposed. In a nutshell, an attacker is able to execute malicious code on the targeted device by simply sending a chat message to the victim, and the worst thing about it is that after the attack, the victim would be most likely unaware that anything has ever happened.
What allows for the hack to be performed is the way Skype treats and stores chat messages. Apparently, if a sender sets their Skype name to a piece of code, that code will be executed on the recipient's iPhone. Sure, the iOS platform would not allow for the file system itself to be accessed without the needed permissions, but the target's address book can be accessed freely and is therefore completely exposed.
Below is a video of the hack in action demonstrating how easy it is for an attacker to steal your address book with the right tools. That being said, it would probably be a good idea to be extra careful while receiving chat messages via Skype. A solution to the vulnerability has yet to be released.
Posts: 5396; Member since: Sep 16, 2010
Not again -_- skype better fix this fast
posted on Sep 20, 2011, 7:40 AM 0
Posts: 179; Member since: Sep 26, 2010
You mean Microsoft?
posted on Sep 20, 2011, 2:40 PM 0
Posts: 2014; Member since: May 03, 2011
i know technically this isnt apples fault but i thought that nothing can happen to the iphone...doesnt apple check apps thoroughly before they allow it be on the app store...hope no one is affected by this though
posted on Sep 20, 2011, 3:04 PM 0
Posts: 262; Member since: Jul 07, 2011
"Sure, the iOS platform would not allow for the file system itself to be accessed without the needed permissions, but the target's address book can be accessed freely and is therefore completely exposed." Address book? I'm scared. Don't call my friends!!
posted on Sep 20, 2011, 4:45 PM 0
Send a warning to post author
Send a warning to Selected user.
The user has 0 warnings currently.
Next warning will result in ban!
Ban user and delete all posts
Message to PhoneArena moderator (optional):