A new instant messaging worm that “chats” to targeted users before infecting them has appeared.
The IM.Myspace04.AIM worm, monitored by instant messaging security company IMlogic, targets users of the AOL Instant Messenger (AIM) service.
AIM users have to receive an instant message with a web link, which is then clicked, for the worm to be installed on their machine.
When suspicious users have sent a message back enquiring whether the link is safe, they have received a message back confirming it is, said IMlogic.
They have then unwittingly clicked on the link and opened a .pif attachment that unleashes the worm onto their machines.
The worm disables security software on infected users’ machines, installs a backdoor on the PC to allow remote hackers into the system, and replicates itself to other users via the infected user’s address book.
IMlogic said the worm is not widespread but warned that other virus writers would use its proof of concept.