IMlogic Threat Center Upgrades the Threat Level of the Opanki Variant Due to Significantly Increased Detection of the IM.PIC22.AIM Worm.IMlogic--
WHAT: Industry leader IMlogic (www.imlogic.com) is warning customers
that the IM.Pic.22AIM and the Opanki.AC worms are propagating
over leading instant messaging networks. These worms
distribute URLs to user buddy list contacts which connect to
malicious payloads. The malware carries along Trojan horse
software including, but not limited to, SDbot to open security
back doors, rootkit software which remain undetected by
security software, and Internet Relay Chat (IRC) backdoors to
notify attackers of the infection and give them control over
compromised machines.
This worm was previously found with low distribution, but
based on increased reports to the IMlogic Threat Center,
IMlogic is raising the alert level to medium.
Similar in propagation to earlier IM worms, the Opanki.AC and
IM.Pic.22AIM worms leverage social engineering to trick users
to download and install the worm. After installation the worm
hijacks end user clients and sends personalized messages to
each member of IM "buddy lists" that are currently on-line.
The susceptibility of users to these types of attacks has
stemmed from the fact that all viruses propagated over IM have
thus far come from known buddies, so end users are receiving
messages from trusted IDs with whom they have previously
interacted.
IMlogic Threat Center automatically detected, quarantined and
blocked these threats using the IMlogic Real-Time Threat
Protection System (RTTPS). RTTPS automatically protects
against these new, unknown IM threats by providing in depth
analysis of client and message structure to identify virus
propagation behavior. This protocol level analysis allows the
system to predicatively block and validate potential threats,
while immediately protecting the IMlogic Threat Center
Community. IMlogic recommends organizations strengthen
additional security protection by ensuring all desktop
antivirus solutions are updated, the latest security patches
have been applied to all desktop systems, and that all out of
date IM clients have been blocked from accessing the relevant
IM networks.
WHO: Experts from the IMlogic Threat Center can speak with
technology and business reporters, industry analysts,
enterprises, partners or anyone concerned about the impact of
this threat. IMlogic can also offer commentary involving
increased risk from IM worms, viruses and other security
threats related to the growing popularity of IM use within
enterprise.
MORE INFO: Learn more at IMlogic's Threat Center:
http://www.imlogic.com/im_threat_center/index.asp.
Disclaimer (networking) disclaimer - Statement ritually appended to many Usenet postings (sometimes automatically, by the posting software) reiterating the fact (which should be obvious, but is easily forgotten) that the article reflects its author's opinions and not necessarily those of the The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties warranties, n.pl the details of a contract; considered less important than the conditions. Whereas the penalty for breach of conditions is the termination of the contract, the penalty for breach of warranties is payment of damages to the innocent party. with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential con·se·quen·tial adj. 1. Following as an effect, result, or conclusion; consequent. 2. Having important consequences; significant: loss or damage arising from use of, or reliance on, this information. IMlogic, IMlogic products and IMlogic IM Manager are trademarks of IMlogic Corporation and/or and/or conj. Used to indicate that either or both of the items connected by it are involved. Usage Note: And/or is widely used in legal and business writing. affiliated companies Affiliated Companies A situation that occurs when one company owns a minority interest (less than 50%) in another company. Also refers to companies that are related to each other in some way. Notes: An affiliated company is sometimes referred to as a subsidiary. in the United States United States, officially United States of America, republic (2005 est. pop. 295,734,000), 3,539,227 sq mi (9,166,598 sq km), North America. The United States is the world's third largest country in population and the fourth largest country in area. and other countries. All other registered and unregistered trademarks represented in this document are the sole property of their respective companies/owners. |
|
Printer friendly
Cite/link
Email
Feedback
Reader Opinion