Pesquisadores do ISC (Centro de Tempestades da Internet) receberam mensagens detalhadas de dois usuários usando o AOL que receberam mensagens que os levaram a sites contendo código malicioso que explora a falha do JPEG, já corrigida pela Microsoft, segundo Johannes Ulrich, chefe de tecnologia do ISC. A mensagem suspeita é "Check out my profile, click GET INFO!".
Security experts have spotted the first attempts to create an Internet worm that propagates using instant messages and exploits a recently disclosed flaw in Microsoft software.
Researchers at The SANS Institute's Internet Storm Center (ISC) have had two reports of users receiving messages on America Online's AOL Instant Messenger service that lured them to Web sites containing malicious code, said Johannes Ullrich, chief technology officer at SANS ISC, in an interview on Wednesday. The messages told the users to "Check out my profile, click GET INFO!"
Mais informações: InfoWorld
