Hopefully Vipre blocks it as well. J
John-AldrichTile-Tools From: Garcia-Moran, Carlos [mailto:[email protected]] Sent: Tuesday, May 04, 2010 10:14 AM To: NT System Admin Issues Subject: RE: Yahoo / IM Virus New?? Woot! NOD32 5080 and above is blocking the Worm :0 , We are Saved, Well until someone else clicks on another one From: Angus Scott-Fleming [mailto:[email protected]] Sent: Tuesday, May 04, 2010 9:42 AM To: NT System Admin Issues Subject: Re: Yahoo / IM Virus New?? > So of my users are reporting getting a link to a PHP page in the Yahoo > Chats from Known contacts, once clicked (of course they did) it scans > through their IM contacts and sends the exact link to all of them. Just a > heads up, don't know if it's new or not but 1st time I've seen it. In case > anyone gets it, ours is like this "foto http bflmages com / images php" add > dot's and stuff of course In the news right now: Yahoo! Messenger Users Infected By New Worm, Form An IRC Botnet | CyberInsecure.com http://cyberinsecure.com/yahoo-messenger-users-infected-by-new-worm-form-an- irc-botnet/ A new worm is quickly spreading on Yahoo! Messenger (YM) via Web links to fake images. Users who fall victim to this threat have an IRC botnet client installed on their computers. According to security researchers from Vietnam-based antivirus vendor Bkis, who analyzed the new worm, it spreads though YM spam. The malware sends out malicious links of the form http://[rogue_domain_name]/image.php to the entire contact list of any user logged into YM on an infected computer. -- Angus Scott-Fleming GeoApps, Tucson, Arizona 1-520-895-3270 Security Blog: http://geoapps.com/ _________________________________________________________ This e-mail, including attachments, contains information that is confidential and may be protected by attorney/client or other privileges. This e-mail, including attachments, constitutes non-public information intended to be conveyed only to the designated recipient(s). If you are not an intended recipient, you are hereby notified that any unauthorized use, dissemination, distribution or reproduction of this e-mail, including attachments, is strictly prohibited and may be unlawful. If you have received this e-mail in error, please notify me by e-mail reply and delete the original message and any attachments from your system. _________________________________________________________ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
<<image001.jpg>>
<<image002.jpg>>
