Latest in Email

Image credit:

Skype disables password reset page to deal with email-based security 'vulnerability' (update)

0 Shares
Share
Tweet
Share
Save

Sponsored Links

Skype has taken down its password reset page as it deals with a password reset exploit that can give suspicious types access to your account with only your email address. The issue was first spotted on Russian forums months earlier, but TNW has since been able to replicate the same, apparently easy to reproduce, vulnerability. Before Skype withdrew its password reset page, the only way to avoid the problem was to change your email address to something unknown by anyone. According to Skype's Heartbeat status blog, it's now investigating the issue further.

Update: Skype has released a second statement: "Early this morning we were notified of user concerns surrounding the security of the password reset feature on our website. This issue affected some users where multiple Skype accounts were registered to the same email address.

"We suspended the password reset feature temporarily this morning as a precaution and have made updates to the password reset process today so that it is now working properly. We are reaching out to a small number of users who may have been impacted to assist as necessary."

Source: Skype
Coverage: TNW
In this article: email, microsoft, password, security, skype, voip
All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
0 Shares
Share
Tweet
Share
Save
Comments

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr