Saturday, October 29, 2005

Rootkit Takes Aim at AOL

Michael Myser writes in eWeek:

Security researchers have identified a rootkit being spread through AOL's popular instant messaging client and AOL chat rooms.

Bundled within the previously identified W32/Sdbot-ADD worm, the lockx.exe rootkit file is installed when users click on the file link within the IM window. Though neither the worm nor the rootkit file are new, it appears to be the worm's first foray into the AIM (AOL's Instant Messenger) network. What's more troubling is that rootkits haven't previously been spread via IM.

"This is the first instance of a rootkit coming through the IM vector," said Tyler Wells, senior director of engineering for FaceTime Communications.

FaceTime discovered the additional rootkit using IM honeypots monitoring IM networks, Web sites and chat rooms for malicious content and URLs.

0 Comments:

Post a Comment

<< Home