Then, minus a couple of key steps, you can use a password reset token to gain access to your target’s account. Essentially, that email address is used to create a new account with your own email address tied to it. We reproduced the attack, step-by-step, and managed to access the Skype accounts of TNW writer (with permission) Josh Ong (as well as editor Matt Brian to verify again) with only their email addresses. ![]() To protect yourself, you would have to change your email address to one that nobody knows or could easily guess, but most likely Microsoft will get around to fixing the problem before that becomes necessary. To exploit this flaw, all you need to know is your victim’s email address tied to their Skype account.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |