{"id":2212,"date":"2011-04-16T20:09:30","date_gmt":"2011-04-16T10:09:30","guid":{"rendered":"http:\/\/mingersoft.com\/blog\/?p=2212"},"modified":"2011-04-16T20:09:30","modified_gmt":"2011-04-16T10:09:30","slug":"huge-security-hole-in-skype-for-android","status":"publish","type":"post","link":"https:\/\/mingersoft.com\/blog\/2011\/04\/huge-security-hole-in-skype-for-android\/","title":{"rendered":"Huge Security Hole in Skype for Android"},"content":{"rendered":"<p>A quick heads up for tonight.<\/p>\n<p>If you use Skype for Android (like myself) then you should probably be made aware of a major security hole that can reveal a significant amount of personal information from Skype, including:<\/p>\n<ul>\n<li>Username,<\/li>\n<li>E-mail address,<\/li>\n<li>Gender,<\/li>\n<li>Contact List and their information.<\/li>\n<\/ul>\n<p>I have included a video sourced from YouTube that shoes the security hole being exploited (<\/p>\n<p style=\"text-align: center;\"><object style=\"height: 390px; width: 640px;\" width=\"640\" height=\"390\"><param name=\"movie\" value=\"http:\/\/www.youtube.com\/v\/An8SnCBj-gU?version=3\" \/><param name=\"allowFullScreen\" value=\"true\" \/><param name=\"allowScriptAccess\" value=\"always\" \/><\/object><\/p>\n<p>About an hour ago, Skype released the following e-mail to users of Skype to Android warning of the security problem and making people wary if installing suspect applications.<\/p>\n<blockquote><p><strong>Dear &lt;username&gt;<\/strong><\/p>\n<p><a>Thank  you for downloading and using the Skype for Android software. Unfortunately, it  has come to our attention that if you were to install a malicious third-party  application onto your Android device, it could access the locally stored Skype  for Android files. These files include cached profile information and your  instant message chat history. <\/a><\/p>\n<p><a>We  take our users\u2019 privacy very seriously and are working quickly to protect you  from this vulnerability, including securing the file permissions on the Skype  for Android application. This update will be available shortly and as always we  urge you to install updates to benefit from our continuous fixes and  improvements.<\/a><\/p>\n<p><a>Until  the update is released, to protect your personal information, we advise that you  as always take care when selecting which applications to download and install  onto your device from the Android Marketplace.<\/a><\/p>\n<p>For more information  see our Security Blog at blogs.skype.com\/security or our security section at  skype.com\/security.<\/p>\n<p><a><strong>Adrian  Asher<br \/>\nChief Information Security Officer<br \/>\nSkype Information Security <\/strong><\/a><\/p><\/blockquote>\n<p>So be wary of the apps you have installed or will install( particularly if you have rooted your phone) until the update is released which hopefully won&#8217;t be too far away.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>A quick heads up for tonight. If you use Skype for Android (like myself) then you should probably be made aware of a major security hole that can reveal a significant amount of personal information from Skype, including: Username, E-mail address, Gender, Contact List and their information. I have included a video sourced from YouTube &hellip; <\/p>\n<p><a class=\"more-link btn\" href=\"https:\/\/mingersoft.com\/blog\/2011\/04\/huge-security-hole-in-skype-for-android\/\">Continue reading<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[63,423,18,65],"tags":[355,2268,1404,115,2319],"class_list":["post-2212","post","type-post","status-publish","format-standard","hentry","category-communications","category-skype","category-technology","category-voip","tag-android","tag-google","tag-root","tag-security","tag-skype","item-wrap"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/mingersoft.com\/blog\/wp-json\/wp\/v2\/posts\/2212","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mingersoft.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mingersoft.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mingersoft.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mingersoft.com\/blog\/wp-json\/wp\/v2\/comments?post=2212"}],"version-history":[{"count":0,"href":"https:\/\/mingersoft.com\/blog\/wp-json\/wp\/v2\/posts\/2212\/revisions"}],"wp:attachment":[{"href":"https:\/\/mingersoft.com\/blog\/wp-json\/wp\/v2\/media?parent=2212"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mingersoft.com\/blog\/wp-json\/wp\/v2\/categories?post=2212"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mingersoft.com\/blog\/wp-json\/wp\/v2\/tags?post=2212"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}