Skype Glitch Allowed Android Authentication Bypass

January 7, 2019

A Skype vulnerability could have allowed hackers to bypass authentication methods and access personal data on an Android device – simply by answering a Skype call to that device.

The glitch, which was disclosed by security researcher Florian Kunushevci last week, was patched earlier in December by Microsoft, which owns the Skype telecommunications platform.

“A new vulnerability that I found on Skype has been fixed that affected millions of Android devices around the world that uses Skype,” Kunushevci said in a LinkedIn post about the bug last week. “[The] new update you will find from 23 December 2018.”

Read More on Threat Post