Home > slashdot > Malicious Websites Can Initiate Skype Calls On iOS

Malicious Websites Can Initiate Skype Calls On iOS

November 8th, 2010 11:13 admin Leave a comment Go to comments

An anonymous reader writes “In this article, security researcher Nitesh Dhanjani shows how iOS insecurely launches third-party apps via registered URL handlers. Malicious websites can abuse this to launch arbitrary applications, such as getting the Skype.app to make arbitrary phone calls without asking the user. Dhanjani ‘contacted Apple’s security team to discuss this behavior, and their stance is that the onus is on the third-party applications (such as Skype in this case) to ask the user for authorization before performing the transaction.’ He also discusses what developers of iOS apps can do to design their software securely and what Apple can do to help out.”

Source: Malicious Websites Can Initiate Skype Calls On iOS

Related Articles:

  1. Skype For Android Can Leak Data To Malicious Apps
  2. Fring Calls Skype ‘Cowards’; Skype Responds
  3. Skype 2.0 Finally Allows VoIP Calls Over 3G But Skype To Charge Monthly Fee From 2011
  4. Russian FSB Can Reportedly Tap Skype Calls
  5. Skype For IPhone Now Makes Video Calls
blog comments powered by Disqus