Skype update enables account theft

"The recent update to Skype 5.5 for Windows contains a severe security
vulnerability that allows attackers to get control of your Skype account,
according to security expert David Vieira-Kurz. The update promises close
integration with Facebook – for instance, you are to be able to track
your Facebook friends' activities from your Skype client and even post
wall messages from there. But it turns out that the process entails a
real security risk, because the client executes JavaScript code in
Facebook status messages without filtering."

Please reply back to this ticket if you found this security alert useful.