When the patch was released, Microsoft issued an official statement saying they don’t build backdoors in their products, so this could be an artifact that predates the company’s acquisition of Skype, meaning that users have been at risk for a very long time.įrom a business perspective, this serves to underscore the importance of having a robust update policy that extends to employee-owned devices if your firm has a BYOD (Bring Your Own Device) policy in place.Įven if your company doesn’t use Skype for regular communication, it can still pose a security risk if one of your employees has an outdated version.Microsoft Skype for Business is our phone system which allows employees to make and receive calls from anywhere. If you’re a Mac user running any version of Skype older than 7.37, you are at risk and should update immediately.
The backdoor appears to be an unused remnant of code that dates back to 2010, and Microsoft has already released a patch. In terms of scope and scale, statistics indicate that there are more than 30 million Mac OS X users who may be vulnerable, which makes this a fairly pervasive problem. The researchers also released proof-of-concept code that demonstrates how the hackers can gain full control without asking for the user’s permission, which would normally be required for any process to attach itself to Skype.
A previously undiscovered backdoor was recently found by researchers at SpiderLabs that would allow any moderately skilled hacker to take control of the app and use it to gain access to a variety of information, including: If you use a Mac, and you have a Skype account, you could be at risk.
0 kommentar(er)
