A developer named Justin Case has drawn attention to a vulnerability in Skype for Android. Therefore be tapped over the app name, phone number and chat logs. Skype had been informed and the process of investigating the matter, writes case.

On 11 April was a leaked version of Skype video surfaced on the Web, the case analyzed. He was soon an exploit and shaken out of his sleeve was shocked at how much data could be intercepted it. He then took the standard version of Skype for Android under the magnifying glass, which is the beginning of October 2010. You, on the same vulnerability.

According to Skype’s case, there are data directory folder, each of which bears the same name as a Skype user. There is information such as contacts, profile and IM logs saved in SQLite3 databases. Skype had failed to adequately protect these files so that each app to have access. “Unscrambled you are not only accessible but also complete,” wrote Case.

Even those who do not know the user name, the directory can be found easily according to the Case. User names are in turn stored in a static folder. A hacker could parse it and find the name and the path to the stored data. In a database called main.db case itself has information such as Skype credit, real name, birth date, address, country, telephone and mobile phone numbers found. The contacts database contains extensive information similar to – and a lot more than display their Skype users.

Case advises Skype to restrict access to the files first. In addition, encryption is necessary. Skype have recently had to test his application before publication neat for security vulnerabilities. A proof-of-concept app called Skypwned (download) displays a portion of the data that are accessible via the vulnerability.

HIGHLIGHT Android malware: real danger or hype?

Antivirus vendors warn against pests in the Android Market and offer fee-based protection. ZDNet explains why there are virtually no malware for the Google OS, and a virus protection is not needed. »Read more …

A developer named Justin Case has drawn attention to a vulnerability in Skype for Android. Therefore be tapped over the app name, phone number and chat logs. Skype had been informed and the process of investigating the matter, writes case. On 11 April was a leaked version of Skype video surfaced on the Web, the [...]

A developer named Justin Case has drawn attention to a vulnerability in Skype for Android. Therefore be tapped over the app name, phone number and chat logs. Skype had been informed and the process of investigating the matter, writes case. On 11 April was a leaked version of Skype video surfaced on the Web, the [...]

A developer named Justin Case has drawn attention to a vulnerability in Skype for Android. Therefore be tapped over the app name, phone number and chat logs. Skype had been informed and the process of investigating the matter, writes case. On 11 April was a leaked version of Skype video surfaced on the Web, the [...]

A developer named Justin Case has drawn attention to a vulnerability in Skype for Android. Therefore be tapped over the app name, phone number and chat logs. Skype had been informed and the process of investigating the matter, writes case. On 11 April was a leaked version of Skype video surfaced on the Web, the [...]

A developer named Justin Case has drawn attention to a vulnerability in Skype for Android. Therefore be tapped over the app name, phone number and chat logs. Skype had been informed and the process of investigating the matter, writes case. On 11 April was a leaked version of Skype video surfaced on the Web, the [...]

A developer named Justin Case has drawn attention to a vulnerability in Skype for Android. Therefore be tapped over the app name, phone number and chat logs. Skype had been informed and the process of investigating the matter, writes case. On 11 April was a leaked version of Skype video surfaced on the Web, the [...]

A developer named Justin Case has drawn attention to a vulnerability in Skype for Android. Therefore be tapped over the app name, phone number and chat logs. Skype had been informed and the process of investigating the matter, writes case. On 11 April was a leaked version of Skype video surfaced on the Web, the [...]