Microsoft Pulls Skype’s Password Reset Page After Security Flaw Discovered

All you need is a Skype user’s email address and you’re in.

Microsoft has pulled the Skype reset password page as it searches to fix a security hole. Details of the flaw, which allows anyone to hijack a Skype user’s account with just their email address, have been available on a Russian forum for a couple of months.


Skype released a statement this morning. “We have had reports of a new security vulnerability issue. As a precautionary step we have temporarily disabled password reset as we continue to investigate the issue further. We apologize for the inconvenience but user experience and safety is our first priority.”

About the author

My writing career has taken me all round the houses over the past decade and a half--from grumpy teens and hungover rock bands in the U.K., where I was born, via celebrity interviews, health, tech and fashion in Madrid and Paris, before returning to London, where I now live. For the past five years I've been writing about technology and innovation for U.S.