Viruses and worms can come in from many directions



For a long time, email was the primary vector for viruses, before that floppy discs carried bugs from pc to pc. Then came network worms exploiting windows security vulnerabilities which led to the rise of firewalls and the increase in viruses piggy-backing into the system through browser bugs. But, any program that listens for data coming from the network could be an entry way for good traffic, or bad. The Securityfix is talking today about November being a record month for Instant Messenger worms.


It’s one of those “vectors” that’s not thought about as much, but is just as much a risk. But you have a firewall shouldn’t that protect you? Well, no… the instant messenger typically opens the ports through the firewall so that it can receive data from the outside world. So, to repeat the above, any network service (any program that listens for network connections) is a possible security risk.

It looks like Microsoft’s network is the most targeted for the year, but AIM became a greater target from October on. 62 worms were counted in November by Akonix (who sells Instant Messenger Security solutions…)

Most Instant Messenger worms target IRC (Inernet Relay Chat), most of the main network (Yahoo/MSN/AIM/etc.) worms are not very destructive (yet.) The company that did the study (Akonix) says fewer than 5% of users use antivirus protection specific for Instant Messenger’s. I think this is a vector that will be taken advantage of more and more.

Virus writers basically are going after “low hanging fruit”. The objective is to infect as many systems as possible, so they will go where the vulnerabilities are. Instant messengers are prime targets for that. I find that I hardly ever just leave an Instant messenger running all the time. I know some that do. For those, it’s important to at least keep it updated from your Instant Messenger vendor.

Related Posts

Blog Traffic Exchange Related Posts
  • The Great Cyberwar It went un-noticed by most people for a few years. After all, the ones that were affected were just those that were "asking for it". Where to start. Let's see, back in the day there were some that sent out messages to other peoples computers and even when people tried......
  • Rumors abound on Google Instant Messenger Slashdot is reporting, as well as other sources, that Google is preparing the launch of an Instant Messenger. One story suggests that Google is running a jabber server on talk.google.com Jabber is an open source messenger platform. The story says that an announcement will be made Wednesday "of a new......
  • Apple iTunes vulnerability on Windows eEye has discovered a remotely expoitable security vulnerability in Apple's iTunes software. It affects iTunes 6 and prior and the current security updates (released yesterday) do not address the issue. News.com has coverage as well. Earlier they reported that it affected "all operating systems", however now they are saying that......
Blog Traffic Exchange Related Websites
  • Mac OS X: A Threat is growing… As a devoted Mac user since 1994, it scares me every time I hear other Mac users say, “ The Mac is so safe, I don’t worry about viruses or apply any security features”. Even though to date, there have not been any damaging viruses or attacks successfully applied to......
  • Microsoft Security Advisory (2286198): Vulnerability in Windows Shell Could Allow Remote Code Execution Vulnerability in Windows Shell Could Allow Remote Code Execution Published: July 16, 2010 Version: 1.0 General Information Executive Summary Microsoft is investigating reports of limited, targeted attacks exploiting a vulnerability in Windows Shell, a component of Microsoft Windows. This advisory contains information about which versions of Windows are vulnerable as......
  • Ad Revenue From Corporate Blogs Many companies don’t consider the fact that they could actually make money from their blogs. The popularity of online advertising has made it easy to include ads from all over the world, and Google Ads in particular make it very easy to target your readers with advertisements that they will......
en.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site