German IT security expert Levent Kayan discovered a simple, but particularly nasty vulnerability in Skype that enables an attacker gain access to session IDs and user account data, including passwords.
[citation][nom]otacon72[/nom]Um it is... if you have to worry about your top contacts hacking your computer then you have more issues then a Skype bug.[/citation]Unless a script ran on any infected computer can automatically infect all your top contacts then all that person's top contacts. It sounds to me like it relies on trust of a source that can't be verified as clean, which is a legitimate security threat. I assume it'll get fixed within a week now that it's public though.