Last week, I discovered-quite by accident-that the version of iSkoot for the Nokia N95 was sending the entire session in the clear. In short, your Skype credentials, and everything you were using iSkoot for on Skype, was being sent unencrypted from your mobile phone.
For those who don't know, iSkoot provides the ability to use Skype from a mobile handset Nokia N95 or Nokia N97. IM is supported directly from the handset. Voice calls go over the standard voice network, but are redirected through iSkoot's gateways so you can use your Skype minutes to make those expensive international calls much cheaper.
While this isn't such a big deal on the cellular networks, where it is not as easy for people to see what's being sent, it becomes a problem with dual-mode handsets over WiFi. It's also just the principle of the thing.
I reported this problem on my blog on a Friday night. By Saturday afternoon, with some help from my friends Andy Abramson, Jim Courtney, and Dan York, I had the attention of iSkoot's CEO, whom I sent more details to confirm my findings. By Sunday afternoon, we had a confirmation they see the problem and will fix it. Today, I confirmed their new client was available and did not have the issue.
The update to the iSkoot client should be forced, but if not, go download the latest version for your S60 device. iSkoot clients on other platforms are unaffected.
Crossposted from The Mobile Technology Weblog
Post a Comment