Wednesday, February 14, 2018

Major Security Hole In Microsoft's Skype Gets Back Burner

Skype, the peer-to-peer communications app now owned by Microsoft, apparently has a large security hole, which Microsoft apparently has chosen not to fix. According to a report from ZDnet, as well as online vulnerability reports, Microsoft's popular chat- and voice- communications app is vulnerable to something called "DLL hijacking", where a dynamically linked library downloaded to a temporary folder can be used to replace one of Skype's DLLs, allowing an attacker to completely take over a computer. The report claims Microsoft--despite being informed of the bug--has decided to instead focus on a rewrite of the Skype client.