CyberInsecure.com

Daily cyber threats and internet security news: network security, online safety and latest security alerts
April 1st, 2008

Skype Encrypted Instant Messages Can Be Eavesdropped

Security vendor FaceTime Communications has released the only security product on the market allowed to look at encrypted instant messages sent between Skype users. The upgrade to the company’s Greynet Enterprise Manager (GEM) detects harmful URLs within instant messages.

Instant messages are used by hackers that lure victims to harmful websites. Through a compromised instant-messaging account, a hacker may have access to a person’s contact list. Those contacts may think they are being sent a link by a friend, but fall victim to a social engineering trick that puts their PCs at risk.

FaceTime is the only company that has an agreement to develop security software with Skype, which is owned by eBay.

One of the most popular Voice over Internet Protocol (VoIP) applications, Skype, has posed a concern to companies due to its use of encryption for voice conversations and instant messages. Skype constantly updates the protocol to ensure privacy for its users, but Skype’s stealth is worrisome for security-minded IT managers tasked with ensuring sensitive company data doesn’t leave their networks.

A year ago FaceTime released its first product for Skype, FaceTime Internet Security Edition for Skype. The product controls who is allowed to use Skype, as well as finer-grained controls, such as whether a user can use Skype’s chat function.

The latest upgrade is part of GEM, which is available as an add-on to FaceTime’s Unified Security Gateway, an appliance for instant messaging and VoIP security, and IM Auditor, an instant messaging management appliance.

Share this item with others:

More on CyberInsecure:
  • Skype File URI Security Bypass Code Execution Vulnerability
  • Advanced Social Engineering Worm Infects Yahoo! Messenger And Skype Users
  • Skype Eavesdropping Trojan Code Released By Developer
  • Pamela-systems.com Users Database Breached, Personalized Phishing Hits Skype Users
  • Severe VoIP Vulnerabilities In Microsoft Communicator

    • Posted in Privacy, VoIP | Print This Post Print This Post

    This entry was posted on Tuesday, April 1st, 2008 at 10:13 am and is filed under Privacy, VoIP. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

    If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: Skype Encrypted Instant Messages Can Be Eavesdropped

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    *
    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.

    « «
    » »