Using Skype on your iPhone? Watch out!

Are you using the Skype for iOS app on your iPhone or iPod Touch? Then you need to be aware of how easily your information — particularly your entire address book — could be stolen without your knowledge. All it takes is a single chat message.

According to TechCrunch, the issue was first discovered by AppSec Consulting security researcher Phil Purviance — who claims that he pointed out the vulnerability to Skype about a month ago. Here’s how it can be done:

  • An evildoer places malicious code into the “Full Name” field in his or her Skype profile
  • That individual sends a chat message to his or her victim — someone who is using Skype on his or her iPhone or iPod Touch
  • As soon as the victim views the message, the malicious code begins to run on his or her mobile device
  • Information — such as the victim’s address book — is uploaded to the evildoer’s computer
  • The evildoer is able to sift through the stolen information at his or her leisure

The reason this series of events can occur is because the “Full Name” field isn’t checked for malicious code.

Scary, right? But there are a few things you should know before you panic.

For starters, thanks to the way Apple has designed iOS — its mobile operating system — only certain files, including your address book, are vulnerable.

But most importantly, you should know that Skype is working on a fix for the security issue.


About SCB Enterprises
System Solutions and Integration

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s

%d bloggers like this: