September sees surge in IM threats

By Bill Brenner, News Writer 03 Oct 2005 | SearchSecurity.com

Security Wire Daily News Digg This!     StumbleUpon     Del.icio.us

Here's another reason for IT administrators to worry about the various instant messaging programs employees are using: September saw the highest number of IM threats to date, according to those who track activity for San Diego security firm Akonix Systems.

Akonix's Security Center team tracked the highest monthly total of new threats ever recorded, with 25 viruses in September, the company said in a statement. In the past, IM-borne viruses were often mutations of other variants. But last month seven new viruses appeared to be built specifically to target IM.

Related links IM threat service pledges cooperation Tips for securing Web-based applications

The findings are a wake-up call for organizations, showing that on average more than one IM attack takes place per day, Francis Costello, Akonix's chief technology officer, said in a news release. "It's critical that businesses secure their network from these potential threats, which are becoming more sophisticated by the day," he said. "In order to receive the business benefits offered by real-time communications, enterprises must ensure they are protected and in control of both public and enterprise IM systems, as well as P2P use on their corporate network."

Among the new viruses identified in September were Mete, Parda, Simbag and Lewor, the company said, adding, "These appear to represent the next wave of attacks. In the first half of 2005, many of the IM threats were variants of common worms, such as Kelvir and Bropia. While variants of these worms are still being issued, the frequency has decreased as new sets of viruses have begun to target IM networks."

In the third quarter of 2005, Akonix said it also monitored a new phase in the sophistication of the social engineering efforts used by IM virus writers. August marked the first time a virus queried the configuration of the client software to determine the language setting and then sent a message in the language of that client. September also saw an "international" virus with the Mete worm, which sent its messages in Spanish. In addition, the number of attacks on peer-to-peer (P2P) networks like Kazaa and eDonkey continue to rise with a total of 44 new threats in the third quarter, a 9% increase from the second quarter.

IT managers have expressed growing concern that increased IM use among employees is putting their networks at greater risk. Workers will use a variety of programs from the likes of AOL, Trillian, MSN and Yahoo! IT managers have said they have no way to centrally control the programs and monitor threats that may target them.

Tags: Application Attacks (Buffer Overflows, Cross-Site Scripting),  IM Security Issues, Risks and Tools,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Application Attacks (Buffer Overflows, Cross-Site Scripting) Quiz: How to build secure applications Black box and white box testing: Which is best? Adobe warns of critical update for Reader, Acrobat 9.1.3 9 Ways to Improve Application Security After an Incident Developers Need Help with Security Errors Buffer overflow tutorial: How to find vulnerabilities, prevent attacks SQL injection protection: A guide on how to prevent and stop attacks Experts rebuke programmers who use SQL injection as feature SANS: Application threats, website flaws pose biggest security threats Mozilla helps Adobe push out faster patches Application Attacks (Buffer Overflows, Cross-Site Scripting) Research IM Security Issues, Risks and Tools What are effective ways to stop instant messaging (IM) spam? Secure messaging complications result in limited protection Is it possible to ban chat programs on an enterprise LAN? How to lock down instant messaging in the enterprise AOL closes AIM attack vector, but risks remain Researcher says AIM still vulnerable, AOL insists it's fixed Serious security flaw in AOL Instant Messenger Security flaws found in AOL, Yahoo IM programs Flaw found in MSN Messenger AOL, Yahoo, Trillian IM applications under threat

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary buffer overflow  (SearchSecurity.com) cache poisoning  (SearchSecurity.com) cyberterrorism  (SearchSecurity.com) dictionary attack  (SearchSecurity.com) directory harvest attack  (SearchSecurity.com) distributed denial-of-service attack  (SearchSecurity.com) JavaScript hijacking  (SearchSecurity.com) ping of death  (SearchSecurity.com) stack smashing  (SearchSecurity.com) SYN flooding  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary