The InformationWeek -- Blogs
Welcome Guest. | Log In| Register | Membership Benefits



Topics:  

  • Email this page E-mail this page
  • Print this page Print this page
  • Bookmark and Share
  • icon

IM Systems Under Attack


Posted by , Mar 31, 2005 04:00 PM

Hackers are applying the same social-engineering principles used in E-mail phishing attacks to instant messages. Yahoo Messenger last week was hit by a phishing attack in which IMs were sent under the name of someone from the victim's buddy list; the victim was directed to click on a link to a Yahoo-looking site where their login information was recorded.

Earlier this month, MSN Messenger was subjected to a worm attack in which keylogging software was installed on victims' PCs after they clicked on a link.
Businesses have started cracking down on IM use, restricting it to business purposes and installing specialized security and monitoring software. Media General Inc., an operator of newspapers, TV stations, and interactive media in the Southeast, uses software from IMlogic to control access to AOL Instant Messenger, monitor IMs, and detect malicious code, says Mike Miller, director of support services. Access is limited to about 130 users, most of them in the interactive division, Miller says. No one at the company uses Yahoo Messenger for business purposes, but there have been reported incidents involving AOL Instant Messenger.

Hackers are increasingly discovering soft spots in IM security. The IMlogic Threat Center, which aggregates reports of IM security risks, recently reported a 50% monthly increase in reported IM incidents and more than 30 new IM threats including viruses, worms, and spam over IM (SPIM)/malware. Eighty-one percent of reported incidents included IM virus or worm propagation, 70% targeted MSN Messenger, 18% targeted Yahoo Messenger, and 12% targeted AOL Instant Messenger. The Kelvir, Bropia, and Bizex worms are the most frequently detected IM infections in corporate environments, according to the report.

« Bloggers Blaze Firefox Trail | Main | HP, GE, Metrics, And Innovation »



Sign Up Now
For InformationWeek News Alerts




This is a public forum. United Business Media and its affiliates are not responsible for and do not control what is posted herein. United Business Media makes no warranties or guarantees concerning any advice dispensed by its staff members or readers.

Community standards in this comment area do not permit hate language, excessive profanity, or other patently offensive language. Please be aware that all information posted to this comment area becomes the property of United Business Media LLC and may be edited and republished in print or electronic format as outlined in United Business Media's Terms of Service.

Important Note: This comment area is NOT intended for commercial messages or solicitations of business.


 
 

  1. No Silver Bullet for Parallelism
  2. Think Parallel 2010, Five Years of Multicore
  3. It's All In the Strategy, It's All About the Design

Join The InformationWeek Group On LinkedIn


  1. Verizon Wireless Details Android 2.1 Update For Droid
  2. Google Overhauls Maps For Android
  3. 'Hundreds Of Thousands' Of iPads Ordered So Far
  4. Advantages Of PCI-Based SSDs

  1. Google Releases Free Web Security Scanner
  2. GAO: Multiple Failures Sunk Border Security System
  3. Adobe Flash CS5 For Windows May Violate Apple Rules
  4. FCC Tests Spectrum Dashboard
  5. Samsung, LG Forecast Smartphone Gains
  6. White House Shutters Financial Systems Standards Effort

 
  Ars Technica
Boing Boing
Channel 9 Forums
CRN Blogs
Dr.Dobb's Portal: Blogs
Engadget
Gizmodo
GrokLaw 		  Lifehacker
Schneier on Security
Slashdot
TechCrunch
Techdirt
Techmeme
Valleywag
  DECEMBER 2008
NOVEMBER 2008
OCTOBER 2008
SEPTEMBER 2008
AUGUST 2008
JULY 2008
JUNE 2008
MAY 2008 		  APRIL 2008
MARCH 2008
FEBRUARY 2008
JANUARY 2008
DECEMBER 2007
NOVEMBER 2007
OCTOBER 2007
SEPTEMBER 2007