Skype worm a bit overrated?

Posted on Wednesday, Dec 20 2006 @ 13:23 CET by Thomas De Maesschalck
Yesterday there was some panic over new malware spreading over the Skype VoIP network but security analysts say it's overrated and that the threat is actually low:
Warnings late Monday and very early Tuesday claimed that a worm was propagating across Skype -- one of the most popular voice-over-Internet protocol applications -- and infecting systems with a password-stealing Trojan horse. Tuesday, for example, Symantec issued an alert to customers of its DeepSight threat management service that a worm it dubbed "Chatosky" was spreading in the Asia Pacific region, including South Korea.

"The code isn't a worm," says Dan Hubbard, VP of research at San Diego-based security vendor Websense. "It relies on the end user to acknowledge a binary through the API, which is normal behavior in Skype." In addition, the threat does not make copies of itself.

"It's not exploiting a vulnerability," adds Hubbard.


About the Author

Thomas De Maesschalck

Thomas has been messing with computer since early childhood and firmly believes the Internet is the best thing since sliced bread. Enjoys playing with new tech, is fascinated by science, and passionate about financial markets. When not behind a computer, he can be found with running shoes on or lifting heavy weights in the weight room.



Loading Comments