Skype new IT protection measure
Peter Thermos
peter.thermos at palindrometech.com
Mon Aug 20 11:42:39 EDT 2007
Interesting comment from Skype:
"The disruption was triggered by a massive restart of our users' computers
across the globe within a very short timeframe as they re-booted after
receiving a routine set of patches through Windows Update."
and
"We can confirm categorically that no malicious activities were attributed
or that our users' security was not, at any point, at risk."
http://heartbeat.skype.com/2007/08/what_happened_on_august_16.html
Peter
> -----Original Message-----
> From: owner-cryptography at metzdowd.com
> [mailto:owner-cryptography at metzdowd.com] On Behalf Of dan at geer.org
> Sent: Friday, August 17, 2007 10:30 AM
> To: Ed Gerck
> Cc: Cryptography
> Subject: Re: Skype new IT protection measure
>
>
> Ed Gerck writes:
> | We've heard it so many times: "There's nothing to worry about."
> | Now, Skype adds a new IT protection measure -- "love":
> |
> | "The Skype system has not crashed or been victim of a cyber
> | attack. We love our customers too much to let that happen."
> |
>
>
> ---------- Forwarded message ----------
>
> From: Valery Marchuk <tecklord at argocom.cv.ua>
> To: full-disclosure at lists.grok.org.uk
> Date: Fri, 17 Aug 2007 10:30:50 +0300
> Subject: [Full-disclosure] Skype Network Remote DoS Exploit
>
> Hi all!
>
> On SecurityLab.ru forum an exploit code was published by an
> anonymous user. Reportedly it must have caused Skype massive
> disconnections today.
>
> The PoC uses standard Skype client to call to a specific number.
> This call causes denial of service of current Skype server
> and forces Skype to reconnect to another server. The new
> server also "freezes" and so on ... the entire network.
>
> Liks: http://www.securitylab.ru/news/301422.php
> PoC: http://en.securitylab.ru/poc/301420.php
>
> Best regards,
>
> Valery Marchuk
> www.SecurityLab.ru
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
> ---------------------------------------------------------------------
> The Cryptography Mailing List
> Unsubscribe by sending "unsubscribe cryptography" to
> majordomo at metzdowd.com
>
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list