IM Worm On MSN, AOL, ICQ, & Yahoo Plants Rootkit

hiker climbing to top of a mountain

A New Era for CISOs: Navigating Regulations and Unprecedented Threats A New Era for CISOs: Navigating Regulations and Unprecedented Threats

byDeneen DeFiore, Jason Lee

Apr 25, 2024

5 Min Read

Manager is checking off four workers in a virtual planning matrix to select them for a work team.

Why Your Enterprise Should Create an Internal Talent Marketplace Why Your Enterprise Should Create an Internal Talent Marketplace

byJohn Edwards

Apr 24, 2024

5 Min Read

Resilience

Recent in Resilience

FBI Director Christopher Wray testifies during a Senate Intelligence Committee Hearing on worldwide threats on Capitol Hill in Washington, DC

The Continuing Vulnerability of US Critical Infrastructure The Continuing Vulnerability of US Critical Infrastructure

byCarrie Pallardy

Apr 25, 2024

6 Min Read

Special Cybersecurity Forces Soldier Arrests and Handcuffs Highly Dangerous Hacker. Hideout is Dark and Full of Computer Equipment.

To Catch a Cybercriminal -- and the Fallout That Follows To Catch a Cybercriminal -- and the Fallout That Follows

byCarrie Pallardy

Apr 25, 2024

13 Min Read

ML & AI

Recent in ML & AI

Revolutionizing Healthcare: The Impact of AI in Personalized Medicine and Beyond Revolutionizing Healthcare: The Impact of AI in Personalized Medicine and Beyond

Healthcare

Machine Learning & AI

byFPT Expert

Apr 29, 2024

5 Min Read

Automation concept. View of colorful drawing of gears in notepad made by different colors with automation inscription.

IT Automation

Exploring Ways to Enable Innovation and Efficiency Through Automation Exploring Ways to Enable Innovation and Efficiency Through Automation

byBrandon Taylor

Apr 24, 2024

7 Min View

Data

Recent in Data

Businesswoman standing in data center.

GPUs Force CIOs to Rethink the Datacenter GPUs Force CIOs to Rethink the Datacenter

bySamuel Greengard

Apr 23, 2024

6 Min Read

Computer code on a screen with a skull representing a computer virus / malware attack.

How to Balance Disaster Recovery, Backup Systems, and Security How to Balance Disaster Recovery, Backup Systems, and Security

byJoao-Pierre S. Ruth

Apr 22, 2024

Sustainability

Recent in Sustainability

Sophia Mendelsohn, chief sustainability officer with SAP.

Sustainability

SAP’s Sophia Mendelsohn on Using AI to Scale Sustainability SAP’s Sophia Mendelsohn on Using AI to Scale Sustainability

byJoao-Pierre S. Ruth

Apr 9, 2024

5 Min Read

Robot hand with green plug, plug socket

Sustainability

Confronting the AI Energy Drain Confronting the AI Energy Drain

byRichard Pallardy

Apr 1, 2024

14 Min Read

Infrastructure

Recent in Infrastructure

Businesswoman standing in data center.

GPUs Force CIOs to Rethink the Datacenter GPUs Force CIOs to Rethink the Datacenter

bySamuel Greengard

Apr 23, 2024

6 Min Read

Homepage of Broadcom website on the display of PC

Cloud Group Pans Broadcom’s Effort to Placate EU Regulators Cloud Group Pans Broadcom’s Effort to Placate EU Regulators

byShane Snider

Apr 22, 2024

2 Min Read

Software

Recent in Software

Manager is checking off four workers in a virtual planning matrix to select them for a work team.

Why Your Enterprise Should Create an Internal Talent Marketplace Why Your Enterprise Should Create an Internal Talent Marketplace

byJohn Edwards

Apr 24, 2024

5 Min Read

Young concentrated computer developer writing new code

Software & Services

How Developers of All Skill Levels Can Best Leverage AI How Developers of All Skill Levels Can Best Leverage AI

byPeter McKee

Apr 24, 2024

7 Min Read

Newsletters
Reports/Research
Online Events
Live Events
Podcasts

White Papers
Advertise With Us
About Us
IT Sectors

InformationWeek Resource Library

Cyber Resilience
Cybersecurity

The new worm poses as an invitation to a Christmas-themed Web site.

Gregg Keizer, Contributor

December 20, 2005

1 Min Read

A new worm posing as a come-on to a Santa Claus site is traveling across all the major instant messaging networks, a security firm warned Tuesday, and when recipients visit the bogus site, they're infected with a file hidden from sight by a rootkit.

IMlogic said that the worm, dubbed "M.GiftCom.All," is circulating on the MSN, AOL, ICQ, and Yahoo instant messaging services, is a "Medium" threat, a relatively rare classification for the Waltham, Mass.-based company. Most IM worms and Trojans listed on its Threat Center receive only a "Low" classification.

Like virtually all IM worms, M.GiftCom.All includes a URL in messages it spams out to contacts hijacked from previously-infected PCs. When users naively visit that site -- which is billed as a harmless Santa site -- a file is automatically downloaded to their computers.

The file, usually named "gift.com," includes rootkit elements that cloaks it from security software. In addition, the downloaded executable tries to disable a number of anti-virus programs, adds a keylogger to the system to capture confidential information, and then spreads to others by snatching names from the user's IM client contact list.

IMlogic's alert can be read in full here.

About the Author(s)

Gregg Keizer

Contributor

See more from Gregg Keizer

Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.

SIGN-UP

Editor's Choice

NHL's Calgary Flames at New Jersey Devils on February 8, 2024 in Newark, NJ

NHL, Presidio, and a Transformation Power Move with Hybrid Cloud NHL, Presidio, and a Transformation Power Move with Hybrid Cloud

byJoao-Pierre S. Ruth

Apr 5, 2024

6 Min Read

Online Privacy Security Threat Abstract Background Art

Cyber Risks When Job Hunters Become the Hunted Cyber Risks When Job Hunters Become the Hunted

byCarrie Pallardy

Apr 9, 2024

9 Min Read

Business innovative solution and creative concept as a paper boat tied to a light bulb