Tuesday, September 19, 2006

Got AIM? Be Very Careful

When using AIM, you may get a message from someone on your "buddy" list:

...when AIM users click on a Web link that appears to have been sent to them by someone on their buddy list. They receive a message along the lines of, "Hey, would it be okay if I upload this picture of you to my blog?" If the recipient clicks on the link, an executable file that looks like a JPEG will download into a Windows folder, according to researchers at security company FaceTime Communications Inc.

The file can then execute a number of different attacks...


This critter is a W32 worm. It can then take over your email port and begin sending spam, or implant a rootkit that you REALLY don't want.

One of the most dangerous aspects of the worm is that it can also connect to remote file-upload sites, which Boyd believes the worm authors' use as "staging sites" where they can continuously download new infections.

Oh, neat-o!

1 comment:

J said...

And if you do click those types of links, as there are many, you probably should sign off AIM, uninstall it, and find a new hobby.