Skype Reveals Remote and Local IP Address Of All Online Users

Martin Brinkmann
Apr 29, 2012
Updated • Feb 26, 2014
Security
|
44

If you are a user of the messaging software Skype, you know that you can see the location of your contacts in the Skype interface. What you probably do not know is that there is currently a way to display a Skype user's remote and local IP address as well.

A script has been uploaded to Github that offers these options. According to the page, it can be used to lookup IP addresses of online Skype accounts, and return both the remote and the local IP of that account on a website.

This blog post reveals how the script works. It basically starts an add a Skype contact request but does not complete it. The log file will display the local and remote IP of that Skype user, even if the user is not added to the list of contacts in Skype.

Update: The script is no longer available.

The script is for instance available on this site. Just enter the user name of a Skype user, fill out the captcha, and click the search button to initiate the lookup. You will receive the user's remote IP and port, as well as the local IP and port.

lookup skype ip

This works only if the Skype user is online at the time of the lookup, and not if the user is offline. The IP address can reveal the user's country of origin, and maybe even the town or district. This can be done with the help of tools such as this one. Just enter a public IP address in the form, and you will receive information about the provider of the IP address.

You can also use a tool like IP on Map to display the real world location of an IP address on a map.

ip-on-map

Some Skype users may not see this as a problem at all, as the IP address does not reveal a user's name or street address for instance. The IP address can however lead to those information, for instance in a lawsuit.

There is currently no way of protecting yourself against the lookup of the IP address, other than not logging in to Skype when the software is not needed. The only other option would be the use of a virtual private network or proxy to hide the IP address from users who look it up. (via Hacker News)

What's your take on this? Do you think Microsoft / Skype should fix the issue, for instance by revealing IP addresses only after confirmation by the new contact in Skype?

Update: Here is a statement from a Skype spokesperson:

“We are investigating reports of a new tool that allegedly captures a Skype user’s last known IP address. This is an ongoing, industry-wide issue faced by all peer-to-peer software companies. We are committed to the safety and security of our customers and we are takings measures to help protect them.”

Advertisement

Previous Post: «
Next Post: «

Comments

  1. Craig Stadler said on December 21, 2013 at 1:48 am
    Reply

    Martin, speaking of Skype and IM, have you seen this directory? http://www.search-im.com ?

  2. Kamal-Jit Khanna said on September 24, 2012 at 11:35 am
    Reply

    In the recent past I had set up an skype ID to have video conversation with relatives and out of blue afetr few days of my last conversation with one of them (Out of two contacts) the ring tone sounds to which I responded but there was silence on the other side. I am just curious if I can track down the originating IP and location address of such individuals just to clear my suspicion and block it for ever. I did delete my first skype ID and set up new one this time two new skype ID show up without and contact from my side.

    Any help will be much appreciated. Thank you.

  3. Hy said on May 1, 2012 at 4:34 pm
    Reply

    Does this work to look up a Skype user who is online on Skype but has their Skype status set to “Invisible”?

    1. Martin Brinkmann said on May 1, 2012 at 5:33 pm
      Reply

      This would be interesting to try out. Anyone tested this?

  4. Elijah Lynn said on April 30, 2012 at 10:49 pm
    Reply

    You state that “There is currently no way of protecting yourself against the lookup of the IP address” and then contradict yourself by going on to say that there is a way –> “The only other option would be the use of a virtual private network or proxy to hide the IP address from users who look it up.”

    Why don’t you just say “The only way of protecting yourself against the lookup of the IP address is to use a virtual private network or proxy to hide the IP address from users who look it up.”?

    1. Martin Brinkmann said on April 30, 2012 at 11:52 pm
      Reply

      You can’t protect yourself against the lookup, as the other party is still able to lookup your vpns or proxy’s IP address. These usually do not add full anonymity, as law enforcement and other legal parties may still get your real IP after all. I should have worded it more carefully though.

  5. Matias Aquino said on April 30, 2012 at 9:56 pm
    Reply

    Martin, I think your IP is not obfuscated on the top part of the last screenshot (left and right of the “Locate” button).

    1. Martin Brinkmann said on April 30, 2012 at 10:01 pm
      Reply

      Thanks and corrected.

  6. Rick said on April 30, 2012 at 8:22 pm
    Reply

    Here’s the exciting part for hackers. If they know you are using skype, and they know your IP and open port, injecting software onto your system COULD be more simple as they will be using a trusted application to do so.

    This “unveiling” is just the first step to a huge security issue.

  7. John said on April 30, 2012 at 8:22 pm
    Reply

    Another reason to not use skype.

  8. bastik said on April 30, 2012 at 7:17 pm
    Reply

    Leaking applications and protocols are bad and therefor should be fixed.

    There are people relying on not being revealed by just their “screen-name” in Skype. I’m not affected and don’t care when one would see me IP.

  9. Leprechaun said on April 30, 2012 at 6:29 pm
    Reply

    Each forum can see your ip when you post.
    Each site can see your ip.
    Each application connected to the network can see your ip.

    Enough of this misinformation … you are ridiculous …

    1. Martin Brinkmann said on April 30, 2012 at 7:54 pm
      Reply

      But this is a passive look up.

  10. Spice said on April 30, 2012 at 3:22 am
    Reply

    Is there any known way to add some opacity to this? Last thing I need is a few men in black coats kicking down my door and grabbing my computer based on my router’s DHCP table.

    1. Dino said on April 30, 2012 at 4:03 pm
      Reply

      Yea. Put your tinfoil hat on. Should keep the boogies away for a bit anyway

  11. DNS666 said on April 29, 2012 at 11:42 pm
    Reply

    It’s probably legit. Presumably the site simply implements the scheme presented in this 2011 paper:

    http://cis.poly.edu/~ross/papers/skypeIMC2011.pdf

    The issue’s been known for a while (and Skype isn’t the only vulnerable service).

    -D.

    1. DNS666 said on April 29, 2012 at 11:47 pm
      Reply

      And oh yes, this needs fixin’…

  12. Spice said on April 29, 2012 at 11:15 pm
    Reply

    Had a friend of mine go through it. When you first visit it redirects to:
    http://skype-ip-finder.tk/govalidateyourself#%5Bnumbers%5D:%5Bport%5D:%5Bip%5D:%5Bport%5D/
    Basically, it creates a DB of everyone who visits. People who will go there will generally look themselves up, which is added to the DB at the beginning, then it just puts two and two together and makes the entry to the database so that your IP is applied to the username if it doesn’t already have an entry (I believe). The flash object in the bottom corner is from .skype.com, and is used in the “About Skype” section of the software, so that’s also nothing special.
    Also, as trivia, the server is hosted in Amsterdam and the host IP is malicious:
    http://support.clean-mx.de/clean-mx/viruses.php?ip=94.75.209.182&sort=first%20desc

    1. Martin Brinkmann said on April 29, 2012 at 11:21 pm
      Reply

      Interesting. I can however use it to lookup the IP of other Skype users as well, and the users over at hacker news think it is legit as well.

      1. Anatoly Nechaev said on April 30, 2012 at 10:57 am
        Reply

        You can read author’s article as well as comments here (in Russian):
        http://habrahabr.ru/post/142805/

        And you can get his python script here:
        https://github.com/zhovner/Skype-iplookup/

  13. Zoo said on April 29, 2012 at 9:37 pm
    Reply

    No, they should leave it alone. How are bored internet users gonna spend their time?

  14. S said on April 29, 2012 at 9:20 pm
    Reply

    Microsoft should absolutely fix this. Skype is used by activists worldwide who would not want their IP addresses revealed to oppressive governments.

    1. Vince D Lopez said on May 1, 2012 at 7:47 am
      Reply

      Problem-reaction-solution, the Hegelian dialect.

      Microsoft tells us there is an inherent privacy problem with all Peer-to-peer software, the reaction is outrage or fear, the solution they will propose is to transit all the conversations via their servers, thus making the CISPA infinitely more effective.

Leave a Reply

Check the box to consent to your data being stored in line with the guidelines set out in our privacy policy

We love comments and welcome thoughtful and civilized discussion. Rudeness and personal attacks will not be tolerated. Please stay on-topic.
Please note that your comment may not appear immediately after you post it.