
Malicious payload in the pipeline...
Published: 20 September 2006 08:55 BST
A new AOL instant-messaging worm is making the rounds, carrying a malicious payload disguised as a JPEG, according to security researchers.
The worm provides a path for rootkits and Trojan horses to propagate on the computers of those listed on the user's buddy list, according to an advisory issued on Monday by FaceTime Security Labs. The W32.pipeline worm is one of a growing number of instant-messaging threats on the internet.
W32.pipeline initially appears as an instant message from a familiar contact, according to FaceTime security. A message appears asking users to click on a link to upload a picture of themselves; instead, a command file, image18.com, is downloaded and disguised as a JPEG, according to FaceTime.
Once the user runs the file, a csts.exe is created and installed in the user's system32 folder, as part of the Windows operating system. After a user's system is infected, it becomes part of a botnet - a group of computers controlled remotely to distribute such malicious attacks as viruses or Trojans.
Chris Boyd, FaceTime's malware research director, said in a statement: "The emphasis for this latest worm is not so much on the files that are delivered to the users' computers but rather on the way these files are deposited onto the system."
Dawn Kawamoto writes for CNET News.com
Messaging Engineer EDS an HP Company are currently looking to recruit a Messaging Engineer to join their team based in Hook, Hampshire Provide ...
Senior Messaging Analyst required to work on infrastructure projects for the Exchange and AD Team including Design, Installation and Support. The ...
Instant Messaging (IM) Implementation Project Manager- Energy Sector exp Essential Prestigious client requires an accomplished Project Manager from ...
Agenda Setters 2008
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Naked CIO Naked CIO: Should you monitor staff? Somebody's watching you
Elinor Mills Why 1970s hackers had 'whiz kid' status Q&A: Kevin Mitnick - blackhat hacker turned good guy