Windows 7: Skype for Android Security Flaw: What You Need to Know

Borg 386 · 21 Apr 2011

Quote:

A recently-discovered vulnerability in Skype's Android app could allow malicious apps access to your personal data. Here's what you need to know about this flaw and how to protect yourself.

The problem with Skype for Android, as was discovered by AndroidPolice.com, is the way that the app stores your personal data. That data includes everything from your Skype username, contacts, profile, and instant message logs to far more sensitive information, such as your account balance, full name, date of birth, address, phone numbers, e-mail address, your biography, and more. Also at risk is similar data about your contacts.

According to AndroidPolice.com, "Skype mistakenly left these files with improper permissions, allowing anyone or any app to read them. Not only are they accessible, but completely unencrypted." That means that, if you were to unknowingly download a malicious app, it could be used to access all of that information from your phone. Your credit card data is not at risk, but -- as you can see -- plenty of personal information is up for grabs.

What Apps are Affected?

AndroidPolice.com found the problem when testing out a leaked version of the new Skype Video app. But they quickly discovered that the same flaw was apparent in the standard version of Skype for Android, which has been available since October 2010. That means that all of the app's users could be affected.

How Can You Protect Yourself?

Skype's official response notes that the company is "working quickly to protect you from this vulnerability, including securing the file permissions on the Skype for Android application."

For now, Skype suggests the following remedy: "To protect your personal information, we advise users to take care in selecting which applications to download and install onto their device."

Read more:

Skype for Android Security Flaw: What You Need to Know - PCWorld

mr pc · 21 Apr 2011

oh - looks like iphone is not alone!

You'd have to be an idiot to think Android was free from exploitation. But for the population of app-addicts, dl'ing every single stupid app out there is going to increase the chances of something going wrong. And this issue arose with a "trusted" developer.

**yowanvista** · 21 Apr 2011

It least it won't affect the Symbian version

wilywombat · 21 Apr 2011

@Yowanvista, Maybe not, but since Nokia is going windows and dropping symbian...you can have a different set of headaches instead...mutter,mutter...viruses...malware!!!!

Tepid · 21 Apr 2011

Hmmm,,, Viruses and Malware that can be avoided, by simply being smart about what you use and access,,,

OR

Being tracked everywhere you go and/OR having access granted to all personal information provided just for the asking? BY THE COMPANIES YOU ARE ACTUALLY SUPPOSED TO TRUST?

MMMmmm,, Yep, I'll take viruses and Malware.

Gimme a break.

"wire tapping? what? they can't do that.....
What? Google accessing my WIFI, and Androids releasing my data and tracking me, and Iphones tracking me?

I love my apps on my Android and Iphone, they are so freaking awesome. Man I can't live with out these things.............."

Who's the crazy one?

wilywombat · 22 Apr 2011

We are..for being mug enough to keep chasing the latest technology!! Bring back the tin cans and bit of string I say!!! Or even go the Australian route:- YouTube - Funny Aboriginal

**yowanvista** · 22 Apr 2011

Quote: Originally Posted by wilywombat

@Yowanvista, Maybe not, but since Nokia is going windows and dropping symbian...you can have a different set of headaches instead...mutter,mutter...viruses...malware!!!!

They won't drop Symbian, they'll keep it as a franchise OS for lower end devices

Windows 7: Skype for Android Security Flaw: What You Need to Know

Skype for Android Security Flaw: What You Need to Know problems?