Authored by:

[Breaking] Skype For Android Leaves Your Data Open to Assault

Authored by: Steven Blum — Apr 15, 2011

(Photo: Engadget)

Aside from malware, now there's this to worry about:

It sems Skype's Android client, which is used by over 10 million people,  fails to encrypt any of your personal data. This means that a rogue app could quite easily grab all your account balance, full name, date of birth, cell phone number, city / state / country and more.

A writer for Android Police quite easily hacked into his own Skype app and found this information, without so much as needing even a username.

To point out how vulnerable the piece of software is, the blog made the ethically-dubious decision of actually including a piece of software in the blog post that prooves Skype's vulnerability, leading commenters to cry foul.

What do you think? Was it ethical for the blog to publish a program that can be used to hack into Skype? Will you now delete the app and wait until Skype publishes an update to download it again?

Source: Android Police

Steven Blum has written more than 2,000 blog posts as a founding member of AndroidPIT's English editorial team. A graduate of the University of Washington, Steven Blum also studied Journalism at George Washington University in Washington D.C. for two years. Since then, his writing has appeared in The Stranger, The Seattle P-I, Blackbook Magazine and Venture Villlage. He loves the HTC One and hopes the company behind it still exists in a few years.

5 comments

Write new comment:
  • chinmay Apr 16, 2011 Link to comment

    its good info given out by android police to protect personal data

    0
  • Steven Blum Apr 15, 2011 Link to comment

    Yeah it looks like the app Android Police published is actually harmless.

    I'm not going to remove Skype, though. I'm sure the company will post a fix very, very soon because this is such a serious matter.

    0
  • Android Addict Apr 15, 2011 Link to comment

    Actually, I just did some reading in the comments and I think you're wrong: it appears the app Android Police posted cannot actually be used to hack into the account. I wish I understood how that works but I'm not a developer.

    0
  • Android Addict Apr 15, 2011 Link to comment

    No, I call bullshit. How many people will now download the app they posted and hack into people's accounts? Bad idea.

    And I'm removing Skype now from my apps.

    0
  • David Pitzer Apr 15, 2011 Link to comment

    Uh. Oh. This is terrible. And, yeah, of course it is ethical for Android Police to publish the hacking app, because it proves just how vulnerable Skype is.

    0