HOME > New worm spreads through Instant Messaging

CyberLogic Blog





New worm spreads through Instant Messaging

Posted: August 31st, 2010 by Stewart Beyers

Kaspersky Labs have announced the detection of a new family of worms that spread through Instant Messaging applications. What makes this worm highly unusual is the fact that it is multilingual and can infect multiple Instant Messengers (IM) simultaneously.

The IMs used by this worm include Yahoo Messenger, Skype, Windows Live Messenger, Google Talk, Paltalk, ICQ and the Xfire client. There are currently 4 variants of this worm which has been named IM-Worm.Win32.Zeroll. Once it penetrates a computers security, it searches for installed IM programs and then sends itself to all the addresses in the contact lists.

The worm has a backdoor functionality that allows it to gain control of a computer without the user’s knowledge. Once infected, it will connect to a remote command centre and receive instructions via IRC to start downloading other malicious software. Kaspersky say this new breed of worm connects to different IRC channels depending on the country and the infected application.

Infection happens when a user clicks on a hyper-link to what they believe to be a picture, but instead a malicious file is opened. Because this work is multilingual, using 13 different languages, it can send messages to users in different countries, in a language they will understand.

The majority of the infections so far have been in Brazil, Mexico, Peru and the USA. However, many instances have been recorded in Africa, India and some European countries. Users are urged not to open attachments via IM without confirming the validity of the file with the sender.


|
Connect with us on Facebook, LinkedIn or Twitter. Or subscribe to an RSS feed of our blog.





Do you like what you see on this page? Share it with your friends!







Here's what our customers have to say about our service:
  • "I truly appreciate the speedy response in getting my office up and running again – thank you very much."
    - Stephen Wimborne
    Regional Manager
    Indgro Outourcing (PTY) LTD.
  • "Thanks for always being there, you're the most reliable people ever. I could not manage without you!"
    - Rita Effune, IT Manager
    HHO Africa Infrastructure Engineers
  • "I have never seen things working so smoothly! We are not used to this level of support!"
    - Christiaan Sharp, Executive
    Lipco Group (PTY) Ltd.
  • "It’s not often we can say this of a service provider but you guys have been outstanding!"
    - Guillaumé Marais, CEO
    Indgro Holdings (PTY) Ltd.
  • "It's always a pleasure doing business with CyberLogic - you make us feel like we are number one!"
    - Muriel Erens, Office Management Coordinator
    LIPCO Group (PTY) LTD.
  • "CyberLogic's managed services are better than the invention of the lightbulb!"
    - Jan Hitge, IT Manager
    Indgro Outsourcing (PTY) Ltd.
  • "Thanks for your great service and assistance so far - it's been faultless!"
    - Justin Miccoli, CEO
    3D Model Agency
  • “Thank you for the excellent service we get from your team."
    - Guillaumé Marais, CEO
    Indgro Holdings (PTY) Ltd.


We support the Happy Child Foundation, a non-profit organisation which strives to improve the lives of impoverished, neglected and diseased children. View our Corporate Social Investment policy here.
Microsoft HP Kaseya Dell VM Ware Cisco Sonic Wall GTA Firewalls
HOME > New worm spreads through Instant Messaging