UPDATE 12/7/11:
Yahoo has fixed this zero-day hole.
Security firm, BitDefender posted an update to their MalwareCity blog stating that the fix has been applied server-side and users do not have to download or install anything.
Kudos to Yahoo for issuing a patch a mere two days after it was reported.
-- END UPDATE --
People that use Yahoo! Messenger will want to double-check that their preferences are set to ignore anyone that is not in their messenger friends list.
Researchers at the antivirus firm, BitDefender have discovered a zero-day exploit that allows cybercriminals to hijack your user status.
Cybercrooks can change a target’s Yahoo! Messenger status by simulating the option to send a file to another user, which will load an iframe that updates the victim’s Yahoo! Messenger status without any interaction from the victim.
In fact, there’s a good chance that the victim won’t even realize that their status has been changed by the attacker!
While this issue may seem trivial, a compromised Yahoo! Messenger status can pose as a great threat due to the high click-through rate it generates. The victim’s Yahoo! Messenger contacts may be drawn to click the link in their friend’s status, directing them to an affiliate marketing site setup by the attacker or, in the worst case scenario, a malicious website that will infect the user’s PC with malware by exploiting system vulnerabilities.
BitDefender has notified Yahoo of the vulnerability; however users will need to take the necessary steps to protect themselves until a fix is released. This exploit is present in version 11.x of the Messenger client and includes the recently released version, 11.5.0.152-us.
You can minimize the chances of having your Messenger status hijacked by changing your settings to “ignore anyone who is not in your Yahoo! Contacts”, which happens to be off by default. Of course, it wouldn't hurt to also have a security software solution that offers web filtering installed on your PC.
Photo Credit: SEO Worldwide
Be sure to follow us on Twitter at @hyphenet or “Like” us on Facebook to stay up-to-date on the latest tech news & PC security threats.
No comments:
Post a Comment