Skype is Opting to Create an Entirely New App Instead of Rewriting Code to Fix a Major Security Bug

A major bug has been discovered in Microsoft’s Skype application, but the company won’t patch the vulnerability because of how much work it would require. The bug itself allows attackers to obtain system-level control by exploiting the update installer. Experts say the attack method is on the clunky side but could be turned into a powerful weapon with just a few lines of code. Hackers could have remote access to an entire operating system with ease.

When the discoverer of the bug reached out to Microsoft, he learned that their engineers could replicate the problem, but revising the updater code itself to repair it would be too labor-intensive. The company is instead pooling its resources into building an entirely new client. For damage to be caused, the victim must be an administrator or above, but so far, the vulnerability is present and unprotected.

Follow us on social media for the latest updates in B2B!

Image

Latest

gpu deployment
Applied Digital is Scaling Up Infrastructure to Handle Growing GPU Deployment Needs
May 20, 2024

During a transformative period, Applied Digital experienced a significant increase in demand for large-scale GPU deployment. This demand required a focus on power density, as the networking within data centers, particularly for InfiniBand, necessitated that servers be located close together. Each server consumed 10.2 kilowatts of power, and the optimal performance was achieved when…

Read More
power sources
Applied Digital is Revolutionizing High Performance Computing by Locating Facilities at Unique Power Sources
May 20, 2024

Applied Digital optimizes high-performance computing by leveraging unique power sources, and locating facilities at the source of power rather than in traditional cloud regions. This approach is particularly suited for AI workloads, which do not require ultra-low latency like video streaming. By targeting areas with abundant but underutilized power, known as “stranded power,” the…

Read More
Experts Talk K-12 EdTech Leadership Priorities
K-12 EdTech Leadership Needs a Bigger Seat at the Table to Overcome Cybersecurity, Staffing, Professional Development Challenges
May 20, 2024

As we navigate the evolving landscape of K-12 education, the role of technology, as well as K-12 edtech leadership has never been more pivotal. Especially in the era of K-12 education post-pandemic, how has this influx of technology solutions for everything from curriculum management, to hybrid learning, to quiz gamification, to AI-supported learning, impacted…

Read More
energy reporting
Energy Reporting for Utilities & Businesses Isn’t Just for Transparency. It’s for Energy & Cost Savings, Too.
May 20, 2024

As cities and states increasingly implement energy benchmarking, disclosure, and transparency mandates, utilities and businesses find themselves navigating a complex landscape of compliance and opportunity. The rise of building performance standards, such as New York’s Local Law 97, Boston’s Building Energy Reporting and Disclosure Ordinance (BERDO), and Denver’s Energize Denver, underscores the urgency for detailed…

Read More