questionsdo you trust skype/microsoft?

vote-for23vote-against
vote-for7vote-against

You got Screw-o-softed. A play on Microsoft's making making light of Google scroogled.

vote-for10vote-against

No it could be the beginning of SkyNet.

vote-for8vote-against

This is not really a Microsoft thing. This has been part of the Skype code for ages. Skype has always done things it shouldn't without telling you about it. This comes as little surprise.

vote-for7vote-against

There was a big stink in the esports community after a popular streamer pointed out that you could get DDoSed through someone googling your Skype and using that to find your IP.

http://www.destinysc2.com/how-to-prevent-a-ddos-specifically-in-regards-to-the-wonderful-program-known-as-skype/

I'm not sure if that exploit is still feasible but it's kinda smart to learn a bit on general stuff about what someone can and can't do with an IP address.

vote-for7vote-against

@poopfeast420: That is just old school, we were able to DDoS users on IRC long ago, find out an approximation of where they lived, if they used their real name you could do a regular google search of the name. With the approximate location figure out what Joe Smith your were talking to and pick that one, google listed the phone number, their neighbors phone number. Like I said this is old school google removed that feature, and newer chat applications did not include the IP feature.

Not sure how that is news.

Back to scroogled.. when MS started this campaign, you could still see advertisements in the search results of a Bing search... I just checked and they discontinued that, my guess is under pressure from running a campaign villainizing what they were doing themselves.

vote-for5vote-against

On top of that, they've got the worst customer service I've ever experienced. Ever.

vote-for7vote-against

If this were anyone but Microsoft, they would be applauded. There is nothing wrong with doing this.

Scenario:
Friend has malware and is chatting with you through Skype. They send you a link but their malware replaces the outgoing link with one that points to a copy of itself, trying to infect your computer. Microsoft sees the link and runs it through the malware database. It comes up clean. So it sends a HEAD request to the server to see that - OH! The link redirects you to another web site. And that page IS in Microsoft's malware database. The day is saved, thanks to Microsoft.

For those less technical, a HEAD request is about the least intrusive to privacy that there is. It scans a web page only for the header information, and unlike a GET request, it does not retrieve any of the data on the web page. So your privacy is safe.

I would argue that any web site using the username/password in the URL itself is just plain poor design.

vote-for6vote-against

All I know is Skype lets me check on my doggy from my phone while I'm at work.

vote-for6vote-against

I personally will not touch skype at all. It should be a huge red flag that you can view your past chat messages with any person from any computer, and that you can view and download files you sent or received from years back...

All this means is Skype keeps every chat conversation stored on their server, every file ever sent or received stored...

If anyone else ever gets access to your skype they can see everything you have done..

Yea... No thanks.

vote-for5vote-against

For the more technically inclined, here's some interesting data.

http://seclists.org/fulldisclosure/2013/May/78

[On Skype URL eavesdropping]

Never used Skype. Never trusted it. Microsoft makes no difference, one way or the other, in my trust level for this. As the Gipper always said, "Trust, but Verify."

vote-for-1vote-against

@darkinc: That's like saying you won't sign-up for any email service, since they keep your emails forever unless you delete and then empty the trash can and even then they are still in the server for sometime afterward. Or you will never shop at an online store again, since they keep your credit card and order history on file forever. Or you will never use a phone, since your phone and text history is kept forever.

I just recently had two of my credit cards put on hold because of a declined charge that was not done by me, so someone stole my credit cards from online. Not a big deal, just canceled and the cards, received new ones and moved on. Shit happens and it will happen, but it's not the end of the world.

vote-for3vote-against

@chrisakatrace: Apples to oranges. Email systems are not designed to be used as instant relay chat, email is designed to allow you to get messages 24/7 regardless if you are online, you expect them to be stored so you can view them at your pleasure. As to online shopping, that is another given, if you choose to store your credit card information instead of removing it after each purchase, that is your choice.

Where does skype stop logging? Chat? File transfers? Video calls?