Your global and local IP addresses are quite important and are mostly hidden from other users. This is because if a hacker intends to misuse them, he can launch DoS attacks and cause a lot of problems for you. Now, it has been revealed that a hacker can very easily nick off the local as well as global IP address of a Skype user through a simple hack.
To accomplish the hack, all a hacker requires is to use a cracked copy of Skypekit. Once he has it, he will initiate the add contact process. The process takes place by sending IP routing information back to the app.
The user who is being targeted never gets to know about this. With the help of cracked Skypekit, the hacker can bypass certificate authentication and can in fact bypass all security measures being implemented by Skype in the Add Contact process.
The good thing is that the vulnerability has been revealed andto confirm that the hack does work by providing your skype id. You will then be returned your own IP information. Normally, it wouldn’t be too crucial a problem but like stated earlier, such information can be used by hackers to launch DoS attacks against a computer.
Skype has been informed of the vulnerability too and it had this to say in response, ‘We are investigating reports of a new tool that allegedly captures a Skype user’s last known IP address. This is an ongoing, industry-wide issue faced by all peer-to-peer software companies. We are committed to the safety and security of our customers and we are taking measures to help protect them.’
Update: The site that was being used to furnish a proof-of-concept for this vulnerability has apparently run into problems by Skype. It now displays this text when opened ‘LOL, Skype killed us.’