Viruses and worms can come in from many directions



For a long time, email was the primary vector for viruses, before that floppy discs carried bugs from pc to pc. Then came network worms exploiting windows security vulnerabilities which led to the rise of firewalls and the increase in viruses piggy-backing into the system through browser bugs. But, any program that listens for data coming from the network could be an entry way for good traffic, or bad. The Securityfix is talking today about November being a record month for Instant Messenger worms.


It’s one of those “vectors” that’s not thought about as much, but is just as much a risk. But you have a firewall shouldn’t that protect you? Well, no… the instant messenger typically opens the ports through the firewall so that it can receive data from the outside world. So, to repeat the above, any network service (any program that listens for network connections) is a possible security risk.

It looks like Microsoft’s network is the most targeted for the year, but AIM became a greater target from October on. 62 worms were counted in November by Akonix (who sells Instant Messenger Security solutions…)

Most Instant Messenger worms target IRC (Inernet Relay Chat), most of the main network (Yahoo/MSN/AIM/etc.) worms are not very destructive (yet.) The company that did the study (Akonix) says fewer than 5% of users use antivirus protection specific for Instant Messenger’s. I think this is a vector that will be taken advantage of more and more.

Virus writers basically are going after “low hanging fruit”. The objective is to infect as many systems as possible, so they will go where the vulnerabilities are. Instant messengers are prime targets for that. I find that I hardly ever just leave an Instant messenger running all the time. I know some that do. For those, it’s important to at least keep it updated from your Instant Messenger vendor.

Related Posts

Blog Traffic Exchange Related Posts
  • Linux network worm... There is a linux network worm (virus) in the wild, which I've mentioned already in an earlier post. I did want to take a few moments to highlight this and dispell a few myths. (This is the first linux virus I recall seeing over at SARC in the last couple......
  • Google Talk update - Instant messenger service already live I found a post at slashdot that Google Talk is already live. Earlier in the day there was talk (sorry...) that they were using Jabber. It looks like this person has found a way to login with his Gmail address and password and is (using a jabber compatible client) logged......
  • Sony BMG is still having a bad week.... Unfortunately a LOT of people that have bought Sony-BMG cds (or borrowed, whatever...) are going to have some headaches too. By stock in Tylenol or Aleve or something.... anyway... here's todays roundup of Sony Rootkit news. Including a virus borrowing the gift of SONY... First up is some "backstory" that......
Blog Traffic Exchange Related Websites
  • Personal Security on Social Networking Sites Visits to social networking sites account for more than 10% of the total time people spend on the Internet, according Nielsen Online. A social network site focuses on building online communities of people who share common interests and activities, such as Linkedin.com and Facebook.com. Facebook is now the most visited......
  • Microsoft Security Advisory (2286198): Vulnerability in Windows Shell Could Allow Remote Code Execution Vulnerability in Windows Shell Could Allow Remote Code Execution Published: July 16, 2010 Version: 1.0 General Information Executive Summary Microsoft is investigating reports of limited, targeted attacks exploiting a vulnerability in Windows Shell, a component of Microsoft Windows. This advisory contains information about which versions of Windows are vulnerable as......
  • Roundup: Candy and Cavities Did you have a spooky Halloween? I know I did. I hope you've sorted your candy and tossed the cavity inducing ones away. More importantly I hoped you checked the candy for the biggest health reason: safety. With stories in years past about candy scares it's important to check the......
en.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site