FYI...Skype vuln - update available
Release Date: 2010-03-11
Criticality level: Moderately critical
Impact: Security Bypass, Exposure of sensitive information
Where: From remote
Solution Status: Vendor Patch
Software: Skype 4.x ...
Solution: Update to version 184.108.40.206.55 (v4.2 hotfix #1)...
Skype Release notes:https://developer.skype.com/WindowsSkype/ReleaseNotes
10.03.2010 Skype 220.127.116.11 for Windows
Last Updated: 2010-03-11 18:28:34 UTC - "Skype IMBot
... This is a fairly new vector... other IM based malware using skype IM so itís not brand new but not too common yet either. The malware detects many Reverse Engineering applications and attempts to make the system unbootable if any type of RE is detected. It uses a new (novel) method to hide its processes/files. It scans local networks for 445 probably to exploit one of the many Microsoft vulnerabilities that can be exploited via that service. It uses "conficker like" encryption. It had logic to "infect" usb drives..."
Last Updated: 2010-03-11 22:40:20 UTC - "SKYPE SPIM
... social engineering attempt to get the recipient to load scareware or fakeAV... some java that is intended to simulate an antivirus scan. The scan is free of course. Everyone that gets "scanned" by this junk is infected. Getting cleaned of your viruses costs since you have to buy the commercial version to "clean" your infection..."Skype SPIM (Instant Messaging SPAM)
March 26, 2010 - With over 520 million users
, Skype is the most popular VoIP (Voice over IP) application available today. It provides a great service, allowing families, friends and colleagues to connect to one another through voice and video chat across the globe. However, being so popular doesnít come without a price. The price that is paid is in the form of Skype SPIM (Instant Message Spam). These messages are pushed out to a large percentage of Skype users on a regular basis. The SPIM messages can range from the common pharmaceutical product spam, to fake OEM software, investment scams, replica bags and watches, and adult dating site spam..."(More detail and screenshots at the URL above.)