Around the Net
Skype Fixes Security Flaw That Allowed Users to Hijack Accounts by Email Address
- CNET, Wednesday, November 14, 2012 5:04 PM
Skype announced today that it has fixed a security flaw that allowed users to take over another user's account by simply knowing the user's email address. When creating a new account, a new user who entered the email address of an existing user could then re-set the password. Instead of creating a duplicate account, Skype re-assigned the account to the new user. The company repaired the bug quickly today after being notified, but the issue appeared on Russian hacker forums at least two months ago.
