A horrifying Skype bug and some possibly good news for those looking to understand how it works. Despite the headlines, though, keep in mind these sorts of things are basically irrelevant from the perspective of real security. Not just because Skype had serious problems long before this. If you want real security you can safely treat anything labeled ‘security news’ as an entertaining distraction at best; instead, look elsewhere and try and figure out what’s possible. (It’s not unlike trying to map the shoreline of a lake at night by looking for moonlight reflected in the ripples.)
Anyway. You may have heard of a bug in which Skype would accidentally send copies of your instant messages to random people on your contact list. Microsoft has now released a fix.
At the same time, some people appear to have reverse engineered the Skype binaries and posted the source code as .torrent files, in case you’d like to write your own fix.
“AFTER MICROSOFT ACQUIRING SKYPE FOR 8.5 BILLION DOLLARS AND PROCEEDING TO ADD BACK DOORS FOR GOVERNMENT TO THE PROGRAM, THE SOFTWARE HAS BEEN HACKED AND IT’S SOURCE CODE RELEASED”
“Yesterday Microsoft confirmed a bug in Skype where instant messages were being sent to the wrong person from their contact list. Sometimes it was just a few messages, while other times it was a whole conversation. Today, the company has started releasing patches for the software on the Skype Garage blog in a post titled “Hotfix for multiple Skype clients.” Get the latest version of Skype from here: skype.com/go/getskype.”