Our customers sometimes re-use passwords from other websites for their Skype password. With significant data breaches increasing over the past six to twelve months, this practice creates a real risk of a bad actor using a stolen password from another site to hack a Skype account. While we have not discovered any data breaches of Skype systems, we have observed an increase in unauthorized access to Skype accounts using valid passwords “replayed” from other sites.
We take steps to protect the security of our customers’ accounts. For example, if we develop a reasonable belief that a bad actor is in possession of an account’s credentials, we will notify the customer whenever possible and require a password reset at next login.
Help us to help keep Skype secure. Follow these easy steps:
- Combine your Skype account and your Microsoft account for better account protection and recoverability. Follow the simple steps in the blog here;
- Make sure you are keeping your account safe using the guidance here.
In addition to the practices to protect your Skype account outlined in the links above, we want to remind you of other sound practices to reduce the risk of a compromise of your accounts or you or your contacts being targeted by spam and phishing attacks.
- Always avoid opening suspicious or unsolicited messages or e-mail, never respond to or click any links in spam, and avoid providing personal or financial information in an e-mail or chat—especially credit card information, bank account information, passwords, and ID numbers. We will never ask you for your password or such sensitive personal information over email.
- If you receive a suspicious email or message, do not respond or click on any links or attachments in it.
- When in doubt about the authenticity of an email or message you have received, contact the sender to confirm that he or she actually sent it.
- Never provide personal or financial information in an email or message, particularly to someone you do not know.
- If you believe you are a victim of spoofing, consider letting your friends know that your emails or messages may have been spoofed and to avoid clicking the links in suspicious emails or messages.