Print this article  |  E-mail this article  |  Comment on this article

Report: IM Attacks Hit Record Levels

By Ed Oswald, BetaNews

October 3, 2005, 4:10 PM

Instant messaging security firm IMLogic said on Monday that attacks on IM networks increased to record levels, multiplying by fourteen times through the first three quarters of this year.

"Over the past three months the nature of the IM threat has continued to evolve with increasing levels of sophistication and rates of infection demonstrated by IM worms and viruses," IMlogic CTO Jon Sakoda said.

The report concluded that MSN Messenger has been the recipient of the lion's share of attacks, accounting for 62 percent of reported incidents. 31 percent targeted the AIM client, and another seven percent were aimed at Yahoo! Messenger users.

By type of attack, 87 percent were worm-based, 12 percent hijacked file transfer to deliver viruses, and one percent utilized system vulnerabilities. Altogether, 713 different threats have been reported for IM and P2P applications.

IMLogic cautioned users of AIM and Yahoo from becoming complacent simply because MSN is the target of most attacks.

"While the majority of IM threat outbreaks continue to occur on a single network, during the third quarter of 2005 IM virus writers and hackers continue to increase the sophistication of their attacks," the report says.

Add a Comment (26 Comments)

BetaNews reserves the right to remove any comment at any time for any reason. Please keep your responses appropriate and on topic. Foul language and personal attacks will not be tolerated.

Name (required):

E-mail (required):

Enter Your Comment:

By boast

posted Oct 5, 2005 - 10:00 AM

I never got one of those IM's, but my brother did (he's at college, go figure).

But he was smart enough to not click it, hell, he doesnt even trust his own brother, when i give him a link.

Score: 0

By Bugslayer

edited Oct 4, 2005 - 1:14 PM

hmmm... A company that makes money by securing IM says... "IM attacks are on the rise."

FUD Rules.

Score: 0

By downloader2006

posted Oct 4, 2005 - 4:43 AM

Sad to know Winmx is gone!, but why don't programmers create a mp3's converter, made to look like a Data File, not the mp3 or wav?~then it should be legel LOL.
If it looks like a data file, what can they do to you, I know they can't stop us from downloading files NOW, the heck with them, the RIAA don't own the interent, nor does the government the users the world, its free, this mp3 converted to a data; Now when its sent through your modem, via your ISP, it will have to be converted on the other end - with the same program -convert to mp3, who's to be the wiser
, oops of course this stuff must be underground software. Like those those underground
Drug clubs. ANyway, I heard that the same company, RIAA? can get a copy of Files ever downloaded from you download from your ISP, and who did it; then convict you if you download/uploaded anything like mp3, mpegs ect....

Hope bothside comes to a good outcome!

Score: 0

By mukerjee

posted Oct 4, 2005 - 7:20 AM

downloader didnt u post this in the wrong section by mistake. but hehehe ur idea is sure a great idea .. ;)

Talking abt IM attack, can any IM be safe ? I mean if you will fully download a file and then run it without knowing what you are doing do you really have any right to use internet at all or am I undestanding something absolutely wrong :-/.

Score: 0

By downloader2006

edited Oct 4, 2005 - 8:36 AM

Opps I was in Winmx, then I saw MSN IM attacks, and clicked on the link to read about that news, and jumped here, I thought when you post a comment It was one board, all about winmx :S I am new in Betanews, I think that when we use winmx, msn IM to download its free, nomatter where you live. But if someone don't start doing something now, the courts will make it totally Illegal to download anything, other then HTML files ASP JPG ect. even if I convert my songs then it will really look like trash letters in the file, so how can they touch us when they can't prove it lol. One day I went to my radio station online to listen to whats playing, they took it off the interent because of what was happening to Napster, they resumed live Internet at my favorite Radio station. So they issue is effecting how we do internet these days, I just wish we could all stand strong and win the battle, before we can't even do Private P2P file trasfereing yahoo msn, or just a program you made using Visual Basic, I programmed in Visual Basic 6 many P2P file Transfer back then.
BUt if I ever started again I would Convert my MP3 and even the Filename so I don't get in trouble for Sharing!. Hope to see both sides Solve there problems

Score: 0

By GoodThings2Life

posted Oct 3, 2005 - 11:29 PM

I see more on AIM than the others, but I know MSN has had its fair share in the past, and Yahoo as well.

Here at the college I work the students just had a big outbreak of the most recent AIM bug... it's been causing everything from blue screens to random freezes.

Score: 0

By wincement

posted Oct 4, 2005 - 9:49 AM

Yup. Same here. And all the friends I got the virus link from are at other colleges. I thought that was a little strange...

Score: 0

By excelon2005

posted Oct 3, 2005 - 10:41 PM

These are definitely not new attacks. Every time I hear of any attack, I'm glad that I use Linux because I know that nothing will happen to me even if I (or some guest using my computer) is stupid enough to click them.

Score: 0

By Tenoq

posted Oct 3, 2005 - 9:27 PM

See worms fairly regularly on the MSN network, but haven't seen one on ICQ yet. I use the Miranda client - I usually notify the infected invidual straight away that they're sending dodgy links to all their contacts.

Score: 0

By Dirrty_Harry

posted Oct 3, 2005 - 7:52 PM

"attacks on IM networks increased to record levels, multiplying by fourteen times"
Anyone up for some math?
ok lets do it :
1x14=14 (that looks about right)
ok guys id say there was 14 attacks up to now...better watch out.

Score: 0

By joel_t

posted Oct 4, 2005 - 10:54 AM

Unless of course the initial number of attacks was like 100,000. Then you're math would be:
100,000 x 14 = 1,400,000. :)

Score: 0

By pdail

posted Oct 3, 2005 - 7:06 PM

The only attack i got was, HeartBurn. reading this!!

Score: 0

By theheff

posted Oct 3, 2005 - 6:39 PM

They're not actually attacks, just messages with .php links. They normally come from people who have you on their buddy list, without their knowledge of sending the message. The major problem with the latest string is that users don't know they're infected. If you use firefox, then the infected links have no effect. It's actually kind of entertaining to watch it spread.

Score: 0

By ServerMechanic

posted Oct 3, 2005 - 5:55 PM

In the last 6 years of using AIM, Yahoo, ICQ, and MSN I have never seen or experienced an attack.

I don't use Trillian or GAIM, I use the real clients.

I used to use ICQ and AIM all the time but now I use Yahoo and MSN.

Never one attack.

Score: 0

By GoodThings2Life

posted Oct 3, 2005 - 11:30 PM

Probably because you're (going out on an assumption here) not a complete idiot that clicks on every link and file your contacts send you without first finding out what they're sending and why.

Score: 0

By 1uk3

posted Oct 3, 2005 - 5:51 PM

Any readers of BetaNews ever experienced one of these attacks? Or even an attempted attack? I never have, but am interested to find out more.

Score: 0

By Noremacam

posted Oct 3, 2005 - 11:49 PM

One can be tricked, because it can appear as your closest friends are sending you a file.

Perhaps this is an illustration. Say you have a friend whom you swap files with regularly through a messenger(myself and my friends are programmers, so executables are more than ordinary).

It can be easy to slip up and grab something by accident, especially since alot of the new attacks use bot ai to give it a more human approach to getting you to download it(seeming real enough for the seconds beforehand hand).

Yes, I'm ashamed to say I caught a worm once, but at the time I wasn't aware of worms travelling through instant messengers(this was a few years ago). To make matters worse, it send itself to all my people on my list without me knowing it, and screwed them up to. I spent the time undoing the worm's damage on my own computer as well as friends' and family's computers.

Score: 0

By wincement

edited Oct 3, 2005 - 9:51 PM

I got the link from three different friends.

They all sent me the exact same message, which was something like... ...wait a minute, I have it in my logs...

Here you go (link changed so people don't click it):

"LOL LOOK http://www.somevirussite.net/pictures.pif !!!"

I didn't click it because I knew it was bad, and I told all my friends about it, which now have an UPDATED AV client on their computers.

**EDIT**
All of those links came from friends on AIM, although I do use all the major ones 24/7.

Score: 0

By 1uk3

posted Oct 4, 2005 - 8:23 AM

Lol! Yeah, it's always tempting to click on links just out curiosity I guess.

See a link, click on it, got a worm!

Score: 0

By mjm01010101

posted Oct 3, 2005 - 5:42 PM

Weird. through all the press I've never seen one. Guess only accepting from people you know would be a good start. oh well, to each their own, darwin in action.

Score: 0

By jordenpro

posted Oct 3, 2005 - 5:19 PM

and according to my statistics, it has decreased dramatically over the last 2 years.

Score: 0

By jordenpro

posted Oct 3, 2005 - 5:19 PM

The only IM attacks I recieved are messages from my ex girlfriend.

Score: 0

By GoodThings2Life

posted Oct 3, 2005 - 11:31 PM

LMAO!

Score: 0

By fewt

posted Oct 3, 2005 - 6:11 PM

LOL

Score: 0

By Adrian79

posted Oct 3, 2005 - 4:55 PM

hmm ok?

Score: 0

By Jwec

posted Oct 5, 2005 - 11:55 AM

My friends got a BlockChecker virus it sends a message to all her contacts every time she talks to them and she cant see it if you download the program from the link it gives you the same virus she didnt realise she had it for ages.

Score: 0

Nov 21 - 6:51 PM ET Coalition urges better laws for e-mail and cell phone privacy

Nov 21 - 6:42 PM ET How is Internet advertising faring in this bad economy?

Nov 21 - 6:15 PM ET From out of the Amazon Cloud, an AWS winner emerges

Nov 21 - 5:20 PM ET Mufin music finder enters public beta, adds widgets

Nov 21 - 5:01 PM ET Google launches its SearchWiki semantics plug-in

Nov 21 - 4:57 PM ET Asus previews a slimmer, less costly Eee PC

Nov 21 - 4:32 PM ET New Adobe Media Player ushers in AIR 1.5

Nov 21 - 2:11 PM ET AT&T to add Pantech's low-cost C630 phone to 3G lineup

Nov 21 - 1:11 PM ET iPhone gets firmware 2.2 update

Nov 21 - 11:51 AM ET The Dell surprise: Higher earnings on lower revenue