Comments on: Skype, a security risk for corporate networks? http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/ Trusted Insights and Conversations on the Next Wave of Technology Thu, 26 Nov 2009 03:26:30 +0000 http://wordpress.com/ hourly 1 By: skype « Meg Luby’s Weblog http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-863112 skype « Meg Luby’s Weblog Tue, 26 Feb 2008 14:30:58 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-863112 <p>[...] online status and call them which, to me, seems over the top and semi invasive. this article and this article both discuss the problems people are having with skype. [...]</p> [...] online status and call them which, to me, seems over the top and semi invasive. this article and this article both discuss the problems people are having with skype. [...]

]]> By: Saemon http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-344506 Saemon Fri, 13 Jul 2007 20:47:03 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-344506 <p>some intrusion via data-stream is obviously possible but (it depends on what the heck that stream is and what the heck you mean by intrusion) the damage comes when you utilize that data-stream for manipulating any insider(like some trojan). elaborate yet not so exotic method. if our case is a network where data-streams are looked upon as suspects then the hosts ought to have -already- been secured anyway. That's why this debate isn't something for Skype company to worry about.</p> some intrusion via data-stream is obviously possible but (it depends on what the heck that stream is and what the heck you mean by intrusion) the damage comes when you utilize that data-stream for manipulating any insider(like some trojan). elaborate yet not so exotic method. if our case is a network where data-streams are looked upon as suspects then the hosts ought to have -already- been secured anyway. That’s why this debate isn’t something for Skype company to worry about.

]]> By: Om Malik : » Skype’s Risky Retail Strategy http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2714 Om Malik : » Skype’s Risky Retail Strategy Sun, 20 Nov 2005 21:15:38 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2714 <p>[...] Skype’s marketing honcho Saul Klein pointed out that it was working with carriers like ePlus in Germany and trying to develop a better relationship with the phone giants. He acknowledged that the attitude adopted by the likes of SBC is a big problem for anyone who is planning to offer web/software based voice & video service. “This is an architectural issue and we don’t know how it will shake out,” he said. I queried him about the possibility of China and whole countries simply blocking Skype. After all products to do so are plenty, and so are the reasons. (Here is what I wrote eons ago!) [...]</p> [...] Skype’s marketing honcho Saul Klein pointed out that it was working with carriers like ePlus in Germany and trying to develop a better relationship with the phone giants. He acknowledged that the attitude adopted by the likes of SBC is a big problem for anyone who is planning to offer web/software based voice & video service. “This is an architectural issue and we don’t know how it will shake out,” he said. I queried him about the possibility of China and whole countries simply blocking Skype. After all products to do so are plenty, and so are the reasons. (Here is what I wrote eons ago!) [...]

]]> By: Andy Abramson http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2701 Andy Abramson Wed, 30 Nov -0001 00:00:00 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2701 Om,

I spoke to Dmitry after some comments on your news making post was made. Here are his comments:

“1. We at Popular Telephony didnít write the article. I just said what I think and it is fact, not fiction.

  1. In his response, in no way Mr.Kowalczuk is explaining why Skype is not a problem. Instead he is only saying that we can not be the source of the information. So is that information wrong only because we said it or it is really wrong? If it is wrong – that begs the question where, not if?

  2. We are not the hackers and our business is not to exploit Skypeís problems. But if Mr.Kowalczuk wants to talk with us, we can explain to him how he himself can write the code to exploit the vulnerability in Skype, which is fairly simple for him to do.

  3. If CERN sees the problem in Skype policy it’s because of the problem in the architecture which reflects in Skype policy.

  4. We are not a Skype competitor and we said Skype is very nice program for users to use, it is just not to be used in Corporate networks. Never ever due to the security issues it creates.

  5. Skype creates the problem not because it has produced the vulnurable program but because it has a lot of downloads every one of which can be used to attack a corporate network. How? We can explain to Mr.Kowalczuk in more details but it is not our business to do so.”

I hope this helps.

]]> By: jim dallas http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2702 jim dallas Wed, 30 Nov -0001 00:00:00 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2702 <p>Om - " but to me if it is not good for CERN, then it cannot be good for any one." - Skype is not a CERN product - it's a communication/entertainment product - it's a Nokia fascia and ringtones product - it's a lifestyle product. Skype will be fine.</p> <p>Also I'm afraid the article just points out the problems with firewalls - they don't protect you unless everything behind them is also locked down - there are going to be 2 worlds - the pseudo secure, locked down IS department corporate world, and the wide-open, roll-your-own-defences, communication is more important than security world. Zennstrom can release a corporate skype if/when he wants -but thats' not where the current change is happening Jim</p> Om – ” but to me if it is not good for CERN, then it cannot be good for any one.” – Skype is not a CERN product – it’s a communication/entertainment product – it’s a Nokia fascia and ringtones product – it’s a lifestyle product. Skype will be fine.

Also I’m afraid the article just points out the problems with firewalls – they don’t protect you unless everything behind them is also locked down – there are going to be 2 worlds – the pseudo secure, locked down IS department corporate world, and the wide-open, roll-your-own-defences, communication is more important than security world. Zennstrom can release a corporate skype if/when he wants -but thats’ not where the current change is happening Jim

]]> By: Marcelo http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2703 Marcelo Wed, 30 Nov -0001 00:00:00 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2703 Hackers can use the voice stream (which is nothing but data) to bypass firewalls and create havoc on the corporate networks. ìYou can break the whole corporate network in a matter of minutes,î This seems easier said than done…

]]> By: Om http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2704 Om Wed, 30 Nov -0001 00:00:00 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2704 <p>sure marcelo, it is easier said than done for us mere mortals. but hackers are known to waltz into nasa networks quite easily, so for them, the gods of geekdom, this would be a fairly easy trick to pull</p> sure marcelo, it is easier said than done for us mere mortals. but hackers are known to waltz into nasa networks quite easily, so for them, the gods of geekdom, this would be a fairly easy trick to pull

]]> By: Om http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2705 Om Wed, 30 Nov -0001 00:00:00 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2705 <p>actually guys all of you make good points, and i think there is something there. i am trying to find out and hopefully by end of all this it will all be clearer - whether it is a risk or not. i think it is only going to be fair to talk to skype and have them say what really is the story.</p> actually guys all of you make good points, and i think there is something there. i am trying to find out and hopefully by end of all this it will all be clearer – whether it is a risk or not. i think it is only going to be fair to talk to skype and have them say what really is the story.

]]> By: craig http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2706 craig Wed, 30 Nov -0001 00:00:00 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2706 <p>wonder if we'll be seeing this on henshall's blog?</p> wonder if we’ll be seeing this on henshall’s blog?

]]> By: Krzysztof Kowalczyk weblog http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2707 Krzysztof Kowalczyk weblog Wed, 30 Nov -0001 00:00:00 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2707 <p>[...] aOM is an interesting, opinionated weblog that I follow. However, I do have to comment on this entry about alleged security risk of installing Skype. L [...]</p> [...] aOM is an interesting, opinionated weblog that I follow. However, I do have to comment on this entry about alleged security risk of installing Skype. L [...]

]]> By: Nick Gray http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2708 Nick Gray Wed, 30 Nov -0001 00:00:00 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2708 <p>Cool find! Minor correction (to keep Om hip with the non-tech culture trends) - Skype, like Britney Spears Lindsay Lohan is everywhere. Sorry to nitpick, but Lindsay Lohan really is Hollywood's IT girl right now. You need only look as far as ones...</p> Cool find! Minor correction (to keep Om hip with the non-tech culture trends) - Skype, like Britney Spears Lindsay Lohan is everywhere. Sorry to nitpick, but Lindsay Lohan really is Hollywood’s IT girl right now. You need only look as far as ones…

]]> By: Om http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2709 Om Wed, 30 Nov -0001 00:00:00 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2709 <p>hey nick - i am an avid gossip hound but "problems" part of britney spears saga was the reason i used her to compare with skype. and if you catch the "tongue in cheek" catiness, you know i am sort of predicting the skype future. :-)</p> hey nick – i am an avid gossip hound but “problems” part of britney spears saga was the reason i used her to compare with skype. and if you catch the “tongue in cheek” catiness, you know i am sort of predicting the skype future. :-)

]]> By: vk http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2710 vk Wed, 30 Nov -0001 00:00:00 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2710 <p>For what its worth, Ms. Spears remains the sixth most cited person in the blogosphere. Right behind John Kerry.</p> <p>http://www.blogpulse.com/04_06_19/keyPeople.html</p> For what its worth, Ms. Spears remains the sixth most cited person in the blogosphere. Right behind John Kerry.

http://www.blogpulse.com/04_06_19/keyPeople.html

]]> By: Doc Oc http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2711 Doc Oc Wed, 30 Nov -0001 00:00:00 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2711 <p>ISS says it is a high risk due to buffer overflow on callto: protocol</p> <p>http://xforce.iss.net/xforce/xfdb/16405</p> ISS says it is a high risk due to buffer overflow on callto: protocol

http://xforce.iss.net/xforce/xfdb/16405

]]> By: Krzysztof Kowalczyk weblog http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2712 Krzysztof Kowalczyk weblog Wed, 30 Nov -0001 00:00:00 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2712 <p><strong>Spreading FUD about Skype.</strong></p> <p>GigaOM is an interesting, opinionated weblog that I follow. However, I do have to comment on this entry about alleged security risk of installing Skype. Looks like pure FUD to me. The whole basis for accusing Skype of not being secure are those words ...</p> Spreading FUD about Skype.

GigaOM is an interesting, opinionated weblog that I follow. However, I do have to comment on this entry about alleged security risk of installing Skype. Looks like pure FUD to me. The whole basis for accusing Skype of not being secure are those words …

]]> By: Veronica Carso, Budapest http://gigaom.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2713 Veronica Carso, Budapest Wed, 30 Nov -0001 00:00:00 +0000 http://gigaom.wordpress.com/2004/06/22/skype-a-security-risk-for-corporate-networks/#comment-2713 <p><strong>Veronica Carso</strong></p> <p>Hi there! I love your site... go on with your work and thank you very much! greetings from Budapest, Vero</p> Veronica Carso

Hi there! I love your site… go on with your work and thank you very much! greetings from Budapest, Vero

]]>