Viruses and worms can come in from many directions



For a long time, email was the primary vector for viruses, before that floppy discs carried bugs from pc to pc. Then came network worms exploiting windows security vulnerabilities which led to the rise of firewalls and the increase in viruses piggy-backing into the system through browser bugs. But, any program that listens for data coming from the network could be an entry way for good traffic, or bad. The Securityfix is talking today about November being a record month for Instant Messenger worms.


It’s one of those “vectors” that’s not thought about as much, but is just as much a risk. But you have a firewall shouldn’t that protect you? Well, no… the instant messenger typically opens the ports through the firewall so that it can receive data from the outside world. So, to repeat the above, any network service (any program that listens for network connections) is a possible security risk.

It looks like Microsoft’s network is the most targeted for the year, but AIM became a greater target from October on. 62 worms were counted in November by Akonix (who sells Instant Messenger Security solutions…)

Most Instant Messenger worms target IRC (Inernet Relay Chat), most of the main network (Yahoo/MSN/AIM/etc.) worms are not very destructive (yet.) The company that did the study (Akonix) says fewer than 5% of users use antivirus protection specific for Instant Messenger’s. I think this is a vector that will be taken advantage of more and more.

Virus writers basically are going after “low hanging fruit”. The objective is to infect as many systems as possible, so they will go where the vulnerabilities are. Instant messengers are prime targets for that. I find that I hardly ever just leave an Instant messenger running all the time. I know some that do. For those, it’s important to at least keep it updated from your Instant Messenger vendor.

Related Posts

Blog Traffic Exchange Related Posts
  • Google Talk update - Instant messenger service already live I found a post at slashdot that Google Talk is already live. Earlier in the day there was talk (sorry...) that they were using Jabber. It looks like this person has found a way to login with his Gmail address and password and is (using a jabber compatible client) logged......
  • Apple iTunes vulnerability on Windows eEye has discovered a remotely expoitable security vulnerability in Apple's iTunes software. It affects iTunes 6 and prior and the current security updates (released yesterday) do not address the issue. News.com has coverage as well. Earlier they reported that it affected "all operating systems", however now they are saying that......
  • Linux network worm... There is a linux network worm (virus) in the wild, which I've mentioned already in an earlier post. I did want to take a few moments to highlight this and dispell a few myths. (This is the first linux virus I recall seeing over at SARC in the last couple......
Blog Traffic Exchange Related Websites
  • Antivirus Software Vs. Internet Security Software Lots of individuals believe that antivirus software and internet security software are same. While they protect your PC and avoid it from being attacked and infected by threats, they have exact roles in terms of defense and safety for your PC. Antivirus software can be installed on your personal computer......
  • Ad Revenue From Corporate Blogs Many companies don’t consider the fact that they could actually make money from their blogs. The popularity of online advertising has made it easy to include ads from all over the world, and Google Ads in particular make it very easy to target your readers with advertisements that they will......
  • Use Google Apps to Start Your Business for Less As we continue in this recession, their has been a continued focus on both cutting spending and finding alternative streams of income. Whereas some people try get rich quick schemes, other people are taking advantage of the situation and starting a business. I previously discussed why a recession is a......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site