Skype exploit reveals all user IP addresses

[Ink]

A simple Skype exploit can reveal any user's remote and local IP address.

A blog post by skype-open-source runs through the process of obtaining a user's IP address. Essentially, all a person has to do is start the process of adding a contact with a specific user name. Instead of sending a contact confirmation, the person can click on the information card to obtain the IP address.
The process only works if the other user is online. The only method of protecting against this is to log off of Skype when not in use, or using a virtual private network to hide the IP address, according to ghacks.

CNET contacted Skype for comment. We'll update the story when we get more information.

Check Source for Updates

 

[McLovin]

This is not good. Something that you have watch for and they are getting much more wise when it comes to hiding what they are doing.

 

[jamescv7]

Update - Microsoft sent over a statement from Adrian Asher, director of product security for Skype.

We are investigating reports of a new tool that captures a Skype user’s last known IP address. This is an ongoing, industry-wide issue faced by all peer-to-peer software companies. We are committed to the safety and security of our customers and we are takings measures to help protect them.

Source link update