Skype is Opting to Create an Entirely New App Instead of Rewriting Code to Fix a Major Security Bug

MarketScale
MarketScale
Feb 19, 2018
Share this post

A major bug has been discovered in Microsoft’s Skype application, but the company won’t patch the vulnerability because of how much work it would require. The bug itself allows attackers to obtain system-level control by exploiting the update installer. Experts say the attack method is on the clunky side but could be turned into a powerful weapon with just a few lines of code. Hackers could have remote access to an entire operating system with ease.

When the discoverer of the bug reached out to Microsoft, he learned that their engineers could replicate the problem, but revising the updater code itself to repair it would be too labor-intensive. The company is instead pooling its resources into building an entirely new client. For damage to be caused, the victim must be an administrator or above, but so far, the vulnerability is present and unprotected.

Follow us on social media for the latest updates in B2B!

Image

Latest

Next generation of security solutions
The Future of Security: Discovering the Next Generation of Security Solutions at ISC West
April 23, 2024

The recently concluded International Security Conference & Exposition West 2024 (ISC West) proved to be an indispensable platform for discovering the next generation of security solutions, providing attendees with invaluable insights into the future of the industry. At a recent episode of MarketScale’s roundtable show Experts Talk, Cathal Walsh, Vice President and Chief Security […]

Read More
Cyber Resilience: To Protect Corporate Assets, Businesses Must Invest in Cybersecurity Training
April 23, 2024

As cyberattacks occur at increasing frequency, cybersecurity has become a cornerstone of corporate security strategies across all sectors. With businesses increasingly reliant on digital infrastructures, the quality of a company’s cybersecurity training is no longer just an operational requirement — it is a strategic asset. The stakes are high, as a breach can lead […]

Read More
Forming Relationships with Industry Insiders Can Quell Sales Cycles and their Length of Time
April 23, 2024

New companies are facing more and more challenges in the security industry as sales cycles are experiencing lengthier times. One of those reasons is due to the complexity of the security industry itself, along with the unique and special business models every new company will come in with. But there is a solution to […]

Read More
Cyber-first approach
From Bollards to Bytes: Why Security Firms Need to Adopt a Cyber-First Approach
April 23, 2024

How can the security industry effectively navigate the shift from traditional physical security measures to adopting a cyber-first approach in its sales and integration strategies? The transition from physical to digital security solutions was a major theme at the International Security Conference & Exposition West 2024 held earlier this month. On a recent episode of […]

Read More
Related
Software & Technology
Forming Relationships with Industry Insiders Can Quell Sales Cycles and their Length of Time
April 23, 2024
Healthcare
Security Operations Improvements Will Come Via Worker Empowerment
April 23, 2024

The security industry can harness technological tools to optimize workflows and to help further enhance operational efficiency. Much of that can come via retooling, and educating, the labor force to enhance operations within security and control centers.  In an episode of MarketScale’s premier roundtable discussion show, Experts Talk, previewing major trends for ISC West […]

Read More
smart city technologies
Healthcare
Smart City Technologies Rely on Edge Computing for Responsive Disaster Recovery
April 23, 2024

How can smart city technologies enhance local and national response efforts, particularly in disaster recovery scenarios like the Virginia Beach flood resilience initiative? Dustin Seetoo, a Rugged Edge Computing Industry Leader, suggests that the intersection of IoT and rugged edge computing is critical for deploying resilient and responsive smart city solutions. “Specifically, in this […]

Read More