Skype Fixes Random-IM Security Flaw

Skype is rolling out a hotfix for a number of Skype clients that have been affected by a security flaw which sent instant messages (IMs) intended for one contact to another random person on a user’s contact list.

The fix is being rolled out over the next couple of days and Microsoft-owned Skype is recommending that users download them as soon as they become available.

The affected clients are Skype 5.10 for Windows, 5.8 for Mac, 4.0 for Linux and 1.2 for Windows Phone.

Skype Security Flaw

The updates claim to address an issue where if a user’s Skype client crashes during an IM session, the last IM entered or sent could be delivered to a different IM contact after the Skype client is rebooted or if a new user logs in. They also fix a bug on the desktop versions of Skype where it was not possible to save files for users who have a hard disk in FAT32 Format.

“We cannot determine precisely how many users may have been affected by this error, we believe the number is small given the very specific circumstances under which the error occurs,” said Skype. “During further investigation, we confirmed that not all Skype products were affected by this error as originally reported. We can assure that users of Skype 5.9 for Windows, Skype 2.8 for Android and Skype 4.0 for IOS have not been affected.”

Skype had previously been viewed as a safe method of communication as data is stored on the client, rather than any of its servers, as it uses a peer-to-peer system. Researchers last year uncovered a vulnerability that could disclose the location, identity and content of downloads, while Microsoft’s plans to introduce adverts has also raised privacy concerns.

What do you know about Skype? Find out with our quiz!

Steve McCaskill

Steve McCaskill is editor of TechWeekEurope and ChannelBiz. He joined as a reporter in 2011 and covers all areas of IT, with a particular interest in telecommunications, mobile and networking, along with sports technology.

Recent Posts

FTX’s Sam Bankman-Fried Sentenced To 25 Years In Prison For $8bn Fraud

Dramatic downfall. Sam Bankman-Fried sentenced to 25 years in prison for masterminding $8bn fraud that…

51 mins ago

Elon Musk Orders FSD Demo For Every Tesla US Sale

Fallout avoidance? Tesla buyers in the US must be shown how to use the FSD…

2 hours ago

Amazon Pumps Another $2.75 Billion Into Anthropic

Amazon completes its $4bn investment into AI firm Anthropic, after providing an additional $2.75bn in…

3 hours ago

The Sustainability of AI

While AI promises unparalleled efficiency, productivity, and innovation, questions regarding its environmental impact loom large.…

6 hours ago

Trump’s Truth Social Makes Successful Market Debut

Shares in Donald Trump’s social media company rose about 16 percent after first day of…

6 hours ago

Dutch PM Raises Cyber Espionage Case With China’s Xi

Beijing visit sees Dutch Prime Minister Mark Rutte discuss cyber espionage incident with Chinese President…

7 hours ago