Cyber criminals are again using Skype to wreak havoc, according to Sophos's Naked Security blog. The worm they're using this time, a variant of Dorkbot, lets hackers take control of infected Windows PCs remotely via HTTP by exploiting the Skype API. From there, they social engieer people with unsolicited instant messages along the lines of "lol is this your new profile pic?" followed by a URL. Clicking the link downloads a ZIP file containing malicious executable files, which Sophos has detected as Troj/Agent-YCW or Troj/Agent-YDC. Security Awareness Training is a must these days. Read more at InfoWorld.