"Easy-To-Exploit Skype Vulnerability Reveals Users' IP Address"

Attackers can exploit a vulnerability in Skype mobile apps to discover a user's IP address, a piece of information that can endanger individuals whose physical safety depends on the secrecy of their location. A security researcher named Yossi discovered the vulnerability and privately reported it to Microsoft. The specifics of the vulnerability have not been made public because it has not yet been patched, but it is said to be trivially easy to exploit and require changing a link-related parameter. The vulnerability enables attackers to send a message containing a link that, when opened, reveals the recipient's IP address. They are not required to click the link or perform any other action for the attack to be successful. Microsoft initially stated that the issue does not meet the definition of a security vulnerability requiring immediate servicing but later confirmed that it will be addressed in a "future product update." The attack is effective if the target uses the Skype mobile app, but Mac users are secure. This article continues to discuss findings regarding the Skype vulnerability. 

Help Net Security reports "Easy-To-Exploit Skype Vulnerability Reveals Users' IP Address"