Skype is Opting to Create an Entirely New App Instead of Rewriting Code to Fix a Major Security Bug

A major bug has been discovered in Microsoft’s Skype application, but the company won’t patch the vulnerability because of how much work it would require. The bug itself allows attackers to obtain system-level control by exploiting the update installer. Experts say the attack method is on the clunky side but could be turned into a powerful weapon with just a few lines of code. Hackers could have remote access to an entire operating system with ease.

When the discoverer of the bug reached out to Microsoft, he learned that their engineers could replicate the problem, but revising the updater code itself to repair it would be too labor-intensive. The company is instead pooling its resources into building an entirely new client. For damage to be caused, the victim must be an administrator or above, but so far, the vulnerability is present and unprotected.

Latest

What’s Next in the World of Email Automation?
April 23, 2021
Greg Norton is a Marketing Cloud Account Executive at Salesforce, and he shared his thoughts about what's next in the world of email and automation, "I could think of it in terms of three Read more
Empowering Better Communication among Community Healthcare Stakeholders
April 23, 2021
The challenges healthcare executives and administrators face are constantly changing. Host Kevin Stevenson talks with the heroes behind the heroes that are enabling hospitals, urgent care centers and telemedicine Read more
How a Year of Disruption Bred Unprecedented Innovation in Education
April 23, 2021
How do you extrapolate insights on pandemic leadership, the role of women in EdTech, and the dynamics of Zoom in just over 20 minutes? Listen to Kelli Campbell, President of Discovery Education as she Read more