Tuesday, December 06, 2005

A new AIM worm spreading.

The worm is simple and doesn't exploit any vulnerability; instead it relies on social engineering.

The user will receive the following AIM message:

'This AIM user has sent you a Greetings Card, to open it visit: '
(Here it gives you a link to click on)

Instead of going to the AOLs site, this link actually points to a different site from which the user will download the worm.

So, if you get a christmas card over AIM, ignore it, delete it, don't click on it!