View Full Version : Safer Computing: 25/01/2016

25th January 2016, 03:52 PM

Over five years ago, in November 2010, security researchers found a serious privacy vulnerability in Skype that could allow hackers to surreptitiously scoop up sensitive information about users, including victims’ IP addresses and revealing their city-level location.

The researchers who found the flaw were part of the French research institute Inria and the Polytechnic Institute of New York University, and chose to keep their findings out of the public eye, only sharing them with Microsoft-owned Skype. However, in May 2012, a year and a half after being informed about the flaw, news of the still unpatched vulnerability hit the headlines after a web-based tool was published that helped hackers identify the last known IP address of a Skype user. It then took another 44 months (or over five years since the issue was initially raised with Skype) for the problem to get fixed.

Skype last week blogged that in its latest version IP addresses would finally be hidden by default: -> http://blogs.skype.com/2016/01/21/to-our-gamers-ip-will-now-be-hidden-by-default-in-latest-update/

An IP address is an important piece of information that can be used to track your approximate location and your service provider. However, the information is not always necessarily accurate, as you could be using a VPN, which might make it appear that you are based in a different country from the one where you are really located.

If you’re not sure if you’re running the latest version of Skype, go to Help > Check for Updates now.