Viruses and worms can come in from many directions



For a long time, email was the primary vector for viruses, before that floppy discs carried bugs from pc to pc. Then came network worms exploiting windows security vulnerabilities which led to the rise of firewalls and the increase in viruses piggy-backing into the system through browser bugs. But, any program that listens for data coming from the network could be an entry way for good traffic, or bad. The Securityfix is talking today about November being a record month for Instant Messenger worms.


It’s one of those “vectors” that’s not thought about as much, but is just as much a risk. But you have a firewall shouldn’t that protect you? Well, no… the instant messenger typically opens the ports through the firewall so that it can receive data from the outside world. So, to repeat the above, any network service (any program that listens for network connections) is a possible security risk.

It looks like Microsoft’s network is the most targeted for the year, but AIM became a greater target from October on. 62 worms were counted in November by Akonix (who sells Instant Messenger Security solutions…)

Most Instant Messenger worms target IRC (Inernet Relay Chat), most of the main network (Yahoo/MSN/AIM/etc.) worms are not very destructive (yet.) The company that did the study (Akonix) says fewer than 5% of users use antivirus protection specific for Instant Messenger’s. I think this is a vector that will be taken advantage of more and more.

Virus writers basically are going after “low hanging fruit”. The objective is to infect as many systems as possible, so they will go where the vulnerabilities are. Instant messengers are prime targets for that. I find that I hardly ever just leave an Instant messenger running all the time. I know some that do. For those, it’s important to at least keep it updated from your Instant Messenger vendor.

Related Posts

Blog Traffic Exchange Related Posts
  • Sony BMG is still having a bad week.... Unfortunately a LOT of people that have bought Sony-BMG cds (or borrowed, whatever...) are going to have some headaches too. By stock in Tylenol or Aleve or something.... anyway... here's todays roundup of Sony Rootkit news. Including a virus borrowing the gift of SONY... First up is some "backstory" that......
  • The biggest computer security vulnerability ever I talk quite a bit about computer viruses and computer security on this site. It's probably one of the bigger problems that I grapple with for my customers. Today I'm going to talk about the biggest computer security vulnerability there is. In fact, this is a general security vulnerability. It......
  • Google Talk Instant Messenger Client review Believe it or not, there's already a review avialable of the yet to be announced Google Talk CLIENT. I have done a couple posts talking about the fact that some people have been able to access talk.google.com with Jabber compatible messengers. This review is of the official Google client that......
Blog Traffic Exchange Related Websites
  • Microsoft Security Advisory (2286198): Vulnerability in Windows Shell Could Allow Remote Code Execution Vulnerability in Windows Shell Could Allow Remote Code Execution Published: July 16, 2010 Version: 1.0 General Information Executive Summary Microsoft is investigating reports of limited, targeted attacks exploiting a vulnerability in Windows Shell, a component of Microsoft Windows. This advisory contains information about which versions of Windows are vulnerable as......
  • Mac OS X: A Threat is growing… As a devoted Mac user since 1994, it scares me every time I hear other Mac users say, “ The Mac is so safe, I don’t worry about viruses or apply any security features”. Even though to date, there have not been any damaging viruses or attacks successfully applied to......
  • Roundup: Candy and Cavities Did you have a spooky Halloween? I know I did. I hope you've sorted your candy and tossed the cavity inducing ones away. More importantly I hoped you checked the candy for the biggest health reason: safety. With stories in years past about candy scares it's important to check the......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site