The Washington Post

Skype takes action after Russian hackers find password recovery security flaw

Skype has plugged a hole in its password recovery process that allowed outsiders to gain control of a Skype user’s account.

The flaw was first discovered by a group of Russian hackers about two months ago, according to The Next Web. All hackers need to break into your account is your Skype user name and corresponding email address.

The Microsoft-owned VoIP service said it’s aware of the flaw and temporarily turned off the email password recovery process Wednesday morning. The flaw, Skype said, only affected a small number of its users that had multiple Skype accounts registered to a single email address.

“We suspended the password reset feature temporarily this morning as a precaution and have made updates to the password reset process today so that it is now working properly,” Skype told TNW. “We are reaching out to a small number of users who may have been impacted to assist as necessary.”

We’re reaching out to the company for more information, and will updated the post with anything new.

Copyright 2012, VentureBeat

Comments
Show Comments

To keep reading, please enter your email address.

You’ll also receive from The Washington Post:
  • A free 6-week digital subscription
  • Our daily newsletter in your inbox

Please enter a valid email address

I have read and agree to the Terms of Service and Privacy Policy.

Please indicate agreement.

Thank you.

Check your inbox. We’ve sent an email explaining how to set up an account and activate your free digital subscription.