Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Chatty IM bug

Chatty IM bug

by Nikola Strahija on December 5th, 2005 IMlogic has warned of a new breed of malicious instant-message bots thatís on the loose.


Once the computer of an AIM (American Online IM) user is infected by the IM.Myspace04.AIM bot, the bot sends messages to people on the infected user's buddy list, making the messages appear to come from the infected user. The infected user isn't aware the messages are being sent. If recipients click on a URL sent with a message, they'll also become infected and start spreading the virus.

The unusual part of this bot is that it replies to messages. If a recipient responds after the initial message, the bot replies with messages such as "lol no its not its a virus" and "lol thats cool." Because the bot mimics a live user interaction, it could increase infection rates, IMlogic said.
IMlogic continues to analyse this particular threat but so far it seems not to be affecting users.

Some similar IM worms install spybots or keyloggers onto users' computers, said Sean Doherty, director of services in Europe, Middle East and Africa for IMlogic. Such malicious programs record keystrokes or other user activity in an effort to discover user passwords or other information.

-What we're seeing with some of these worms is they vary quickly so the initial one may be a probe to see how well it infected users and then a later variant will be one that may put a spybot out, Doherty said. The initial worm could be essentially a proof of concept coming from the malware writers, he said.


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »