Members Login
Username 
 
Password 
    Remember Me  
CAPP -> CAPP -> Skype reads your BIOS
Post Info TOPIC: Skype reads your BIOS
anonymous


Top Poster

Status: Offline
Posts: 1446
Date:
Skype reads your BIOS
Permalink  

Just another reason to avoid skype like the plague.

Skype reads your BIOS

Talks to your motherboard when your dad is out, too

By Nick Farrell: Wednesday 07 February 2007, 15:02

REPORTS are coming in from eagle-eyed users who have spotted the Voice over IP outfit Skype's software reading their BIOS and motherboard serial number.

Over here, one bloke who runs 64-bit versions of Windows, spotted a strange dialogue box which says "the program or feature "\??\C:\Documents and Settings\Myria\Local Settings\Temp\12\1.com" cannot start or run due to incompatibility with 64-bit versions of Windows."

In other words your phone is trying to run a .com file, which doesn't work that well in Win64 because there’s no NTVDM.

Thinking that getting an unreadable executable file coming from Skype sounds interesting, he opened the file up to see what it was. It is 46 bytes long and includes the phrase

int main(void)
{ fwrite((const void far*) 0xF0000000, 1, 0xFFFF, stdout);
fwrite((const void far*) 0xF000FFFF, 1, 1, stdout);
return 0;
}

Now, as any fule kno, that is a catchy programming phrase designed to dump your system BIOS, which usually includes your motherboard’s serial number, and send it to the Skype Mothership.

The bloke was unsure what the hell Skype would want that information for. He points out that if it weren't for that pesky Windows 64 not having an NTVDM they would have gotten away with it.

Other places it has been spotted are here and here. µ



__________________
CAPP Consumers Against PayPal Policies - Exposing the sleazery of sleazebay and painpal
JAV


Occasional Poster

Status: Offline
Posts: 46
Date:
Permalink  

Skype come clean on BIOS intrusion

Skype have released an explanation on why a file named 1.com is spying on you and reading your motherboard serial number from your computer BIOS. It’s all to do with Skype extras.

Skype Extras are plugins for Skype to provide extra functionality, some are for fun and others provide business applications. The Extras manager relies on software developed by EasyBits Software and this is where the problem lies.

The EasyBits software includes a form of digital rights management functionality intended to protect commercial software, such as plug-ins, from illegal redistribution or unlicensed use. Simply put, the EasyBits DRM framework helps us ensure compliance with software usage and distribution.

To enforce these license agreements, the EasyBits framework attempts to uniquely identify what physical computer it’s running on. One way to do this identification is to simply read the serial number of the motherboard, which is often available through a public query to the BIOS.“

So there you have it, it’s a reasonable explanation, just a pity that the software wasn’t fully tested on all versions of Windows before compatibility issues came to light from users. Skype have now updated the version of EasyBits software that they use and tell us that the new version does not attempt to read your computer BIOS. One can’t help but wonder what it’s reading instead - Skype didn’t comment on that…..

http://www.tamebay.com/2007/02/skype-come-clean-on-bios-intrusion.html



__________________
anonymous


Top Poster

Status: Offline
Posts: 1446
Date:
Permalink  

Just more weasel words from sneaky snakes.



__________________
CAPP Consumers Against PayPal Policies - Exposing the sleazery of sleazebay and painpal
JAV


Occasional Poster

Status: Offline
Posts: 46
Date:
Permalink  

I like the last line:

One can’t help but wonder what it’s reading instead - Skype didn’t comment on that…..

__________________
xppman


Top Poster

Status: Offline
Posts: 745
Date:
Permalink  

JAV wrote:

I like the last line:

One can’t help but wonder what it’s reading instead - Skype didn’t comment on that…..

 

Just one more reason not to trust those people.   Simply amazing.

__________________
anonymous


Top Poster

Status: Offline
Posts: 1446
Date:
Permalink  

xppman wrote:

JAV wrote:

I like the last line:

One can’t help but wonder what it’s reading instead - Skype didn’t comment on that…..

 

Just one more reason not to trust those people. Simply amazing.
That sneakiness is really enough to not use IT/them, but also, Im not thrilled about any VOIP to begin with. It seems like a step backwards (being tethered to your pc).

My cell phone really satisfies my needs for voice communication. It also has internet ability, should I decide to brave those tiny buttons for whatever. And if I wanted to be a complete trekdork  I could get me one o them there bluetooth earpieces. (I am still stuck in the past somewhere with the wired earpirce/mic dealie.)

I cannot see giving up complete mobility for a few bucks a year savings.

There are other completely free VOIP services /programs out there right now anyway. They cannot stop that.

Plus skype has already been cracked. VOIP, in general, is sooo new no one really knows what exploits are possible, or in use right now.

skype on your auction pages? I keep thinking of the word numpty.

I do not even like the name of the product/service. It sounds like a slang term for a reproductive proccess, or a bad business deal outcome.

"I got skyped on that deal"



__________________
CAPP Consumers Against PayPal Policies - Exposing the sleazery of sleazebay and painpal
Page 1 of 1  sorted by
 
Quick Reply

Please log in to post quick replies.
CAPP -> CAPP -> Skype reads your BIOS
Tweet this page Post to Digg Post to Del.icio.us


Create your own FREE Forum
Report Abuse 		Powered by ActiveBoard