Is Skype a security risk that endangers your privacy?

Discussion in 'privacy problems' started by lotuseclat79, Mar 26, 2011.

Thread Status:
Not open for further replies.
  1. lotuseclat79

    lotuseclat79 Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    5,096
    Is Skype a security risk that endangers your privacy?.

    -- Tom
     
  2. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    rather than the tool itself it is the one that abuses it that is the threat
     
  3. SteveTX

    SteveTX Registered Member

    Joined:
    Mar 27, 2007
    Posts:
    1,641
    Location:
    TX
    Chinese spying on Skype was confirmed in 2008 by Skype themselves, where subsequently it was admitted their chinese "partner" corporation TOM would act as censor for unpleasant ideas. On one hand it is amazing how determined some corporations are to reach China, and on the other hand how much integrity they are willing to compromise to get there.
     
  4. chronomatic

    chronomatic Registered Member

    Joined:
    Apr 9, 2009
    Posts:
    1,343
    I've never trusted Skype and I think anyone who uses it for really sensitive communications (dissidents in oppressive regimes, for instance) is an idiot. It's closed source, for one, so decompiling it and thoroughly examining it would be next to impossible. Some reverse engineering has been done, but such analysis cannot provide much assurance as to the presence (or lack thereof) of a backdoor.

    The Austrians have also confirmed that Skype is "no problem" for them as well.

    And as for pandering to oppressive regimes, Microsoft is the latest player to throw their hat into that ring. I am not one to talk about "evil corporations" as has become so popular among youth of today, but in this instance I can make an exception. Do these people have no principles? How can one sleep at night knowing they may be putting lives at risk all for a dollar?
     
  5. doctorlink

    doctorlink Registered Member

    Joined:
    May 8, 2011
    Posts:
    23
    People these days are probably watching TV and uncensored videos in the internet. -__- These guys need to step up, they even began to lack focus in school.
     
  6. funkydude

    funkydude Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    6,852
    The usuall chronomatic rant about closed source, productive input.

    I guess I'll make him happy by saying Mumble is probably the most secure you're going to get, but it isn't peer-to-peer. No one has access to your certificate (like the Skype owners do) and also since it's a constant bit rate stream, doesn't suffer from the theorized "variable bit rate prediction" flaw.

    Also, Mumble is open source, so naturally, it's better than everything else.
     
  7. DasFox

    DasFox Registered Member

    Joined:
    May 5, 2006
    Posts:
    1,825

    Let's stop and think about this for a moment, look at how big Skype is.

    If Skype was doing something that could be proven as placing in their own backdoor and dropping in on conversations and spying, Skype would have one of the biggest lawsuits on their hands you've ever seen probably in Internet history.

    I too as an advocate of OpenSource have spewed this nonsense in the past about trusting Skype and to be honest I think it would be foolish to consider the size of this company doing something illegal.

    For one, the Chinese put a backdoor in Skype all on their own, this had nothing to do with Skype themselves participating in this, that is down right absurd to think otherwise...

    So we really need to look at this with some level of intelligence, talking about not trusting Skype because we think they are spying on us at this point in time, without any hard facts to back up Skype's illegal participation is foolishness.

    So does anyone have any facts to backup their paranoia?

    Believe me I would truly love to have a open source alternative that was a good as Skype but there is none.

    Also if Skype did put a backdoor in on their own, then where are the greatest hacking minds of our time at, who have not hacked this code to reveal it to us?

    Don't you think that would be one great prize for the hacker community to reveal to the world?
     
    Last edited: May 9, 2011
  8. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,833
    What's wrong with Mumble posted by funkydude ?
     
  9. DasFox

    DasFox Registered Member

    Joined:
    May 5, 2006
    Posts:
    1,825

    Well the fact is, we're sitting here saying, or thinking that a company as big as Skype has a backdoor/trojan built into Skype...

    I think it's a bit absurd for the moment to think this, until some hacks the program and shows us otherwise...
     
  10. JRViejo

    JRViejo Global Moderator

    Joined:
    Jul 9, 2008
    Posts:
    20,938
    Location:
    U.S.A.
     
  11. DasFox

    DasFox Registered Member

    Joined:
    May 5, 2006
    Posts:
    1,825

    Woo I haven't been paying attention to the news, I will certainly not care to use Skype if it becomes a M$ product, I think this is even worse news for Skype users around the world, but then again the average consumer could care less about all of this...

    The world really needs a serious open-source alternative to Skype....

    HELLO CANONICAL! ;)
     
  12. funkydude

    funkydude Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    6,852
    Yes please. Buy it, get rid of the dumb advertisements (that even use flash :ouch:) and build it into Windows 8 with proper support for the latest anti-exploit technologies so it doesn't crash when I add it to EMET. :thumb:
     
  13. DasFox

    DasFox Registered Member

    Joined:
    May 5, 2006
    Posts:
    1,825

    Well MS is buying it so your worries should be over... ;)


    http://www.bbc.co.uk/news/business-13343600
     
  14. funkydude

    funkydude Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    6,852
  15. DasFox

    DasFox Registered Member

    Joined:
    May 5, 2006
    Posts:
    1,825
  16. Searching_ _ _

    Searching_ _ _ Registered Member

    Joined:
    Jan 2, 2008
    Posts:
    1,988
    Location:
    iAnywhere
    Skype Security: Flaws

    A friend asked me to find a video or web chat software that can't be dropped in on.
    So far, Skype looks pretty evil to me, won't be recommending them.
     
  17. moontan

    moontan Registered Member

    Joined:
    Sep 11, 2010
    Posts:
    3,931
    Location:
    Québec
    i'm no big fan of Big Brother but really, i am not that important enough to warrant surveillance.

    they can forward all my boring Skype conversations with my relatives to the NSA for all i care. ;)

    '1984' is here, Big Brother is watching, and you better get confortable with the idea.
    that's the price we have to pay when we live in a world where anyone can learn to make bio-chemical-nuclear weapons on the 'net.

    you too, in times, will learn to love the 'machine'. ;)
     
    Last edited: Oct 14, 2011
  18. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,148
    I hate having a program like Skype on my computer. But I have to.

    EMET helps, though I have to turn EAF off. No biggy there.
     
  19. cm1971

    cm1971 Registered Member

    Joined:
    Oct 22, 2010
    Posts:
    727
    True but the average joe user has no idea.
     
  20. Dude111

    Dude111 Registered Member

    Joined:
    Sep 30, 2008
    Posts:
    212
    Yes and now that Microsoft owns it,i wouldnt wanna use it!!!
     
  21. moontan

    moontan Registered Member

    Joined:
    Sep 11, 2010
    Posts:
    3,931
    Location:
    Québec
    but you are using Windows, aren't you?
     
  22. x942

    x942 Guest

    Skype and any voip that doesn't use ZRTP is useless IMO. I only use VOIP system's that use proven and secure encryption methods and are opensource or have been reviewed.

    I have had a similar experience with Skype and haven't used it since. What I have been using are RedPhone on android (by Moxie/Whispersys) and Jitsi on Mac/Linux both use ZRTP and have anti-MITM features. Redphone doesn't use VBR not sure about Jitsi I haven't looked into it much yet.

    There are plenty of other ways to do this like setting up a PBX server with ZRTP or using a VPN or even a combination of both. For work I use a PBX + VPN for double encryption.

    Personally MS buying Skype is a mistake for Skype especially after the patent MS filed for intercepting VOIP communications.
     
  23. Victek

    Victek Registered Member

    Joined:
    Nov 30, 2007
    Posts:
    5,121
    Location:
    USA
    Off topic, but can you say more about using EMET? I installed EMET 2.0 some time ago but didn't configure it. I just updated to 2.1 and see that most of the features are "opt in" by default. Do you "opt in" all of your internet facing apps? I have DEP On for all apps, but not all the other features. Regarding compatibility how do you figure out which features are safe to enable for a specific application?
     
    Last edited: Oct 14, 2011
  24. funkydude

    funkydude Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    6,852
    There are dedicated threads for EMET you can participate in.
     
  25. Victek

    Victek Registered Member

    Joined:
    Nov 30, 2007
    Posts:
    5,121
    Location:
    USA
Loading...
Thread Status:
Not open for further replies.