Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISN] New worm hits AIM network

from [InfoSec News] Network Security [Permanent Link]
Subject: [ISN] New worm hits AIM network
Date: Thu, 16 Jun 2005 02:17:33 -0500 (CDT) 
http://news.com.com/New+worm+hits+AIM+network/2100-7349_3-5748646.html

By Joris Evers 
Staff Writer, CNET News.com
June 15, 2005

A new worm spread quickly on America Online's AIM instant messaging
service Wednesday afternoon but was contained within hours, experts
said.

The worm spread in instant messages with the text: "LOL LOOK AT HIM"  
and included a Web link to a file called "picture.pif." If that file
was downloaded and opened, the worm would send itself to all contacts
on the victim's AIM Buddy List, according to representatives from IM
security companies Facetime and IMlogic.

With earlier, similar worms, downloading and opening a file would also
install a backdoor or other malicious code on the victim's PC, said
Jonathan Christensen, chief technology officer at Facetime. It's not
yet known if this latest worm does that. Both IMlogic and Facetime
were investigating the picture.pif file Wednesday afternoon.

The worm first appeared around 12 p.m. PDT and appears to have spread
quickly until about 1:30 p.m., Christensen said. At that time, AOL
likely put a filter on its AIM service, blocking the worm's spread, he
said. Also, not much later, the malicious code was removed from the
Web.

"We are either currently blocking it, or we will be in the very near
future," said Andrew Weinstein, an AOL spokesman.

Facetime and IMlogic received several inquiries on the worm, signaling
that it was widespread. The worm hit employees at Hewlett-Packard and
prompted tech support at the Palo Alto, Calif., technology giant to
send out an alert to employees.

IMlogic has identified the worm as a variant of the Opanki worm, which
first surfaced last month. The new variant has been rated a "medium"  
risk.

The worm is the latest in an increasing number of cyberthreats that
use instant messaging to attack Internet users. Just as with
attachments and links in e-mail, instant message users should be
careful when clicking on links that arrive in instant messages--even
messages from people they know, experts have warned.



_________________________________________
Attend the Black Hat Briefings and
Training, Las Vegas July 23-28 - 
2,000+ international security experts, 
10 tracks, no vendor pitches.
www.blackhat.com
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISN] New worm hits AIM network, InfoSec News <=
Previous by Date:  [ISN] `Legit' hackers set to target telecom firms in cyber attacks, InfoSec News
Next by Date:  [ISN] Researchers Stymied By Microsoft Vulnerability, InfoSec News
Previous by Thread:  [ISN] `Legit' hackers set to target telecom firms in cyber attacks, InfoSec News
Next by Thread:  [ISN] Researchers Stymied By Microsoft Vulnerability, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]