Good ol' skype. Getting hacked, not getting messages through, overall sucking.

Man microsoft is really trying to kill that thing.

Yes that's bad :(

If someone is sending you virus links, their account was not hacked. They just had a bad password. Thats not Microsoft's fault. It happened to me once, and do you know why? I had the same password I had on FA. FA was hacked 5 months ago, or 6 now, whichever. ALL FA'S PASSWORDS WERE RELEASED, and the salt was stored in PLAIN TEXT. So. Yea.

No that's not true.
My password was generated randomly and was very strong. And I had an active authenticator on my phone with an additionnal "password app". Skype security just sucks, that's all.

Not true for YOU, however true for MANY. In fact, a friend on my skype sent me a virus link, I told him about it, he told me that his password was the same as FA's when FA was hacked.

Not to mention, I forwarded this information onto someone who works for microsoft and he informed the skype development team of his own, and my, suggestions for fixing the skype security a bit better.

Je sais pas ce qu'ils ont foutu avec skype ces jours ci mais j'ai commencé à recevoir des liens douteux avec mon ID dedans. Apparemment ça touche le compte Microsoft tout entier, si tu en as un tu devrais carrément changer ton mot de pass, parce que j'ai vu des gens en ligne alors qu'ils m'ont dit qu'ils ne l'était pas...
On savait que Microsoft allait tuer Skype en le rachetant, c’était juste une question de temps...

Oui ça craint, ça m'est arrivé deux fois en une semaine :0

FA notes isn't secure either: http://faleaks.malicelabs.com/

Stick to Telegram if you want security.

Thanks for the advice~ rawrr

Thats not all, FA's trouble ticket system was released too. I found 3 people who backstabbed me in it.

Okie dokie. :'c

Ça me saoule car Skype m'étais très utile pour twa Draco, mais là c'était vraiment plus possible, deux connexions non désirées en moins d'une semaine :0

*nom nom ton museau tout triste*

De toutes façons de plus en plus de personnes passent sur Discord ou Telegram x)
Mais ça reste quand même bien chiant

Exactement, je m'en passerais bien, mais bon :c

How is it insecure? Just because someone uses a bad password and claims their skype was hacked by geniuses who want to spam links doesn't make it skype's fault.

My password was generated randomly and was very strong. And I had an active authenticator on my phone with an additionnal "password app". Skype security just sucks, that's all.
I changed my password with another random password, and I've got the same shit.
Two unknown connections in 1 week. So, the problem is not the password, but another thing with Skype.

Do you have some insecure thing installed on your computer or your phone that allows someone backdoor access to your devices or even a keylogger? The only time my account was ever "hacked", was when my password was leaked by furaffinity, thanks to Dragoneer and storing shit in PLAIN TEXT FORMAT. Because, why not!... But anyway. If you have a randomly generated password, its impossible for someone to guess it. They would either have to have backdoor access to your devices, or they'd have to hack Microsoft servers.

The alternative is, if you see unknown connections on your skype but you aren't sending unknown links to anyone, is that you simply didn't know that sometimes skype will show you as connected from multiple devices while you're on one device. Another issue is that if you never used /remotelogoff, sometimes your account appears to be signed on from a location that doesn't exist anymore.

/showplaces
You have 2 online endpoints:
{28bec841-4d48-e95a-fd27-bd7dddcd38bd} 'G751DRAKEPC' (Windows Skype)
{e77e566f-b0e3-f51f-b0e3-42c442c4b0e3} 'localhost' (Android Skype)

I have two places, because I solved many of the issues that affect everyone else by making sure to have my settings set up properly.

EDIT: Also, a password authentication? Skype doesn't have two factor authentication if I remember right. If you're using some other site or app to manage your passwords, its possible that service is bad. Link this app you are using, because that sounds a little odd. Randomly generate a password for skype, sure, thats fine but anything added to that that manages your skype password or passwords to other things, might not be good. I randomly generate my passwords using KeePass. 20 characters of any possible character including case sensitive.

Yup, I know the "showplaces" command, it's very useful. I always had max 2 connections with my account ( my computer and phone). I was online when the second "hack" occured, and the "showplaces" said that only 2 connections was active, my computer and my phone.

I did not know about the "remotelogoff" command. My contacts told me multiple times that my account was staying online even when disconnected from both devices.

And for the authenticator app, I use an app on my phone, "Google authenticator". When I try to log in to my account, on Skype or Web Hotmail, the key generated by the authenticator is required.

Hack a password, I understand, but with that authenticator security, I really don't know how even it was possible.

Sorry for my english if it's not clear ^^

The staying online thing is a bug, not a hacker in your account. You can solve it by using remotelogout, its a left over bug from when Microsoft bought Skype and switched Skype over from P2P to Cloud based chats.

If no one actually hacked you and you just thought you were because of being stuck always online, then you were never hacked. Impulsively deleting your clients and everything and blaming skype for everything, which I see a lot of lately. I'm quite sick of people all over telegram claiming Telegram is so much better because of this that and those reasons because these people never did an ounce of research to figure out what was TRULY going on. Which is why I am here, telling you that skype is not at fault for whatever happened to make you leave it.

I can most usually help anyone solve problems with their machines and skype. No one ever asks because they just prefer to say "Skype is shit, I'm going to telegram" and they didn't know the problem was actually their fault half the time. Not saying this time it was your fault, just saying that I'm tired of people blaming Microsoft for all their problems.

And Google Auth is safe, I didn't know you could use 2 factor authentication with skype. I don't and still won't. I actually hate 2FA sometimes because of how it pisses me off a lot with steam.

https://www.dropbox.com/s/qrttxg3zr.....x7/english.jpg <- Something I find a bit funny.

No no, it was a hack on the 2 times. Sending links to all my contacts.

Then its entirely possible you have some sort of app or software installed that may be leaking information such as your passwords out to some random party, I don't know. I won't be able to find out without looking at the problem directly, and since you already ditched skype, I guess it doesn't matter anymore, till you find out other websites you use suddenly get "hacked", and then I may be proven right.

Read a little bit lower to see some security I mentioned about Skype.

There is a confirmed skype hack/exploit that they refuse to fix because it makes them money.

The exploit only works when you have no skype credit. If you have none, your account can be stolen by anyone else. You must deposit money (I think $10 USD is the minimum) for it to not work.

This has happened with my business skype accounts which were then blackmailed.

Ok, so explain how this hack works and how someone can use it to steal accounts.

It's likely not a traditional hack, as in a program or coding oversight. It was more likely due to social engineering.

With no orders on the account and someone claiming to not have access to the email the skype support staff may reset an accounts password to get in. When an order is placed they can use that as a point of reference for verification such as the date the order was placed and for how much.

I'll see if I can find a way to get this solved. I forwarded it to someone who can forward it to the relevant people.

He says if your account wasn't migrated to the Microsoft method yet, then you don't have 2FA. So you need to migrate your account to the Microsoft accounts so you can gain access to 2FA.

I've also suggested two methods for preventing what you said.
One method I suggested, is that you pick three Skype contacts (like on facebook) who can verify you are who you say you are if you ever loose your Skype account. I was chosen as this person on facebook by someone even. So if you lose your account, you contact the Skype team and they contact the three people that you gave as your trusted contacts, and they ask them to confirm you are who you say you are before they do anything.

He said he will pass that on to the dev team, so maybe it'll happen, maybe it won't. At least unlike you and many others, I'm trying to improve Skype by getting ideas to the dev team, rather than going "SKYPE BLOWS, everyone leave it and use this shitty thing called telegram!"... >.>

Another method I suggested is something he said is already in use for Microsoft accounts.
[2:08:23 AM] ----: Yes, we do provide a recovery code.
[2:09:11 AM] ----: A security code which can be accessed through the main Microsoft.com website in the Account Settings only once, for printing and safekeeping.
[2:11:26 AM] Vas: So what happens if you use this once, and forgot about it and your codes are lost, you can't go back in to print new ones?
[2:11:48 AM] ----: You can.
[2:11:55 AM] ----: It invalidates the old one, though.
[2:12:13 AM] Vas: Ah, that's fine, I'll go print a new one, if you can get me the link I need to use.
[2:13:45 AM] ----: Unfortunately, I cannot give you a direct link, but you have to go into Microsoft.com, at the top right go into your Account, should be the first button after the tab deploys. From there, go into Security & Privacy, more security options, recovery code.

So yea, there is a safer method for keeping your accounts out of the hands of social engineering exploitations.