Skype for iOS Contains XSS Vulnerability That Steals Contacts

According to security firm SuperEVR, Skype for iOS contains an XSS vulnerability that allows attackers to steal information from a user’s address book. TechCrunch noted that the Microsoft-owned VoIP company is aware of the problem and is working on an imminent fix.

“We are working hard to fix this reported issue in our next planned release which we hope to roll out imminently. In the meantime we always recommend people exercise caution in only accepting friend requests from people they know and practice common sense internet security as always.”


Post a response / What do you think?