Skype for Android "spills personal details"
Skype for Android has major security flaws that could leave user details and personal data open to attack, according to a report.
The vulnerability involves the way the VoIP (Voice over Internet Protocol) software stores data, an investigation by Android Police found, and could leave make details just as instant messaging logs and address details open to attackers.
"I was in shock at just how much information I could harvest," wrote the report's author, bylined Justin Case. "Everything was available to the rogue app I created, without the need for root or any special permissions and affected Skype for Android, meaning this affects all of the for the time being 10 million users of the app."
"The most interesting file one can gain access to is main.db," the report said. "The accounts table in this database holds information just as account balance, full name, date of birth, city/state/country, home phone, office phone, cell phone, email addresses, your webpage, your bio, and more."
According to Android Police, Skype has said it is investigating the weakness, during a number of responses criticised the site for exposing the vulnerability previously Skype had prepared a fix.
More information: Pcauthority.com
More news:
- · Rackspace debuts OpenStack cloud servers
- · America's broadband adoption challenges
- · EPAM Systems Leverages the Cloud to Enhance Its Global Delivery Model With Nimbula Director
- · Telcom & Data intros emergency VOIP phones
- · Lorton Data Announces Partnership with Krengeltech Through A-Qua⢠Integration into DocuMailer