Skype has taken down its password reset page as it deals with a password reset exploit that can give suspicious types access to your account with only your email address. The issue was first spotted on Russian forums months earlier, but TNW has since been able to replicate the same, apparently easy to reproduce, vulnerability. Before Skype withdrew its password reset page, the only way to avoid the problem was to change your email address to something unknown by anyone. According to Skype's Heartbeat status blog, it's now investigating the issue further.
Microsoft added: "We have had reports of a new security vulnerability issue. As a precautionary step we have temporarily disabled password reset as we continue to investigate the issue further. We apologize for the inconvenience but user experience and safety is our first priority"
Filed under: Microsoft
Skype disables password reset page to deal with email-based security 'vulnerability' originally appeared on Engadget on Wed, 14 Nov 2012 05:42:00 EDT. Please see our terms for use of feeds.
Permalink |
Skype | Email this | CommentsSource: http://www.engadget.com/2012/11/14/skype-disables-password-reset-page-email-based-security/
Savages Home Run Derby 2012 San Diego fireworks steve nash july 4th higgs boson Malware Monday
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.