BKIS – Yahoo IM Accounts Compromised to Distribute Spam

Malware analysts at BKIS (Bach Khoa Internetwork Security), a security vendor in Vietnam, caution end-users that a fresh attack is targeting users of Yahoo! Instant Messenger to steal their accounts and send spam from them.

Nguyen Minh Duc, Manager of Application Security Department, BKIS’, first discovered the malicious attack when one of his friends sent him a spam mail promoting a service for weight loss, as reported by SoftPedia on May 18, 2009.

Researchers at BKIS state that the IM-based spam schemes have occurred several times in the past. But such e-mails are generally dispatched when someone log-in his account from a PC infected with malware. This infected PC helps in the distribution of messages.

However, the current attack does not follow this pattern, as Minh Duc discovered. According to him, when he received the spam mail, he called his friend and found that he had neither accessed his Yahoo Messenger account nor knew anything about the weight reducing service. Minh Duc concludes, the spam wasn’t dispatched through automatic software from his friend’s PC.

According to BKIS, it has been detecting the assaults since March 2009, but it hasn’t still been able to determine the way the malicious e-mails are being sent. The security researchers said that the particular behavior in which hackers, instead of changing the passwords to log-in the accounts they hijacked and used them for spamming messages, was the characteristic of social-networking viruses and not common for IM services.

Minh Duc further notes the weight loss advertisement is accompanied with a buzzing sound, a type of spamming that is not popular. But he cautions that it could become a growing trend and use other IM applications too in future.

Thus, the security researchers say that users, who might be thinking that hackers have compromised their accounts in this particular way, would be safe to reset their password from an uninfected computer. They should also try to spot the PC from where the theft of their log-in details occurred, then do a full scan with an antivirus on that system and eventually begin utilizing a dependable security suite.

SOURCE : http://www.spamfighter.com/News-12430-BKIS-%E2%80%93-Yahoo-IM-Accounts-Compromised-to-Distribute-Spam.htm

This entry was posted in 419 Scam fraud, email spam, Nigerian Scam, spam. Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *

Nigerianspam.com is dedicated to all the hardworking people who have been scammed by the spammer or 419 scam frauds. Although our site concentrates on providing awareness of Nigerian 419 spam (scam), scam baiting, advance fee fraud, scam phising, also we deal with other types of fraud such as letter spam, e-mail scam, lottery spam as well. You can go through our scam baiting tips, it is just amazing way to deal with the spammer or scammer.

Nigerian Scam  |   419 Scam   |   Features of Scam  |   Mission  |   Research  |   Mail Archives  |   About Us   |   File A Complaint  |   Spam News  |   Origin Of Scam   |   Operation Of Scam   |   Consequences   |   Miscellaneous Scams   |   Scam Sites   |   FAQ   |   Contact Us  |   Scam Resources Links  |   Nigerian Scammers  |   Site Map  |   Mail Archives SiteMap  |   Scam Glossary  |   Scam Resources Books  |   Scam Checker Tool  |   Scam baiting   |   More Scam Sites  |  Scam Awareness Quiz  |   Celebrity Scam  |  Search Engine Genie  |   Bharat Udyog Ratna Award Scam Alert  |   Jeff Adams Real Estate Seminar   |   Russ Whitney Real Estate
free hit counter