this post was submitted on 28 Aug 2023
303 points (92.7% liked)

Technology

58044 readers
3528 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
enu@lemm.ee
fry@fry.gs
L3s@fry.gs
enu@lemmy.world
L4s@fry.gs
L4s@lemmy.world
303
Hackers Can Silently Grab Your IP Through Skype. Microsoft Is In No Rush to Fix It (www.404media.co)
submitted 1 year ago by Debs@lemmy.zip to c/technology@lemmy.world
58 comments fedilink hide all child comments
 

A security researcher has found it’s possible to reveal a Skype app user’s IP address without the target needing to even click a link. Microsoft said the vulnerability does not need immediate attention.

you are viewing a single comment's thread
view the rest of the comments
[–] BradleyUffner@lemmy.world 53 points 1 year ago (2 children)

Ohh no, someone on the Internet might have my IP address! The horror! What if they try to ping me?!

[–] RheingoldRiver@kbin.social 11 points 1 year ago* (last edited 1 year ago)

People used to use this attack in League of Legends a decade ago. If they're losing, they guess someone might have Skype open; and moreover, that their Skype is the same as their summoner name. Then they get an ip address and ddos the entire lobby, causing the game to crash (I think it happened in one of my games maybe once, but I didn't really play ranked other than team ranked).

Also, since all pro & semipro players had each other added, this was possible to do at any time during online tournaments (which was most tournaments - TSM invitational etc). So there were always rules that ddossing was disallowed. But it did happen.

Known ddossers were more hated in the community than known flamers, but a few people who did it "reformed" and went on to be pro players anyway.

[–] sugartits@lemmy.world 6 points 1 year ago (1 children)

What if they leave an anonymous tip that you're distributing CSAM?

[–] SkyeStarfall@lemmy.blahaj.zone 27 points 1 year ago* (last edited 1 year ago) (1 children)

With just an IP? Then the system is broken. Because an IP is often easy to get, and everything that directly connects to you needs your IP, unless you use a VPN I guess.

Every website knows your IP. Every internet application knows your IP. Everyone in a peer-to-to-peer network knows your IP. It's not a secret, it's just your internet address. It is designed to be known.

[–] Sethayy@sh.itjust.works 7 points 1 year ago

Yk I was on the others side of this til this comment, like I was gonna say there's a difference between corporations and malicious individual actors, but nowadays I'd trust some random individual 1000x before a company.

God I hope veilied becomes popular