- 10 Microsoft research projects
- 10 kitchen gadgets for the geek gourmet
- Verizon trounces competition
- Smartphone smackdown: Storm vs. iPhone
- FBI warns of holiday cyber scams
Malicious code attacks over instant messaging networks are up almost 80% over last year, according to a new study from vendor Akonix.
In July, the company, which develops IM hygiene and compliance appliances and services, said it uncovered 20 malicious code attacks over IM. The total number of threats for 2007 so far is 226, the company said. That number is a 78% increase over the same period last year.
The company also said attacks on peer-to-peer networks, such as Kazaa and eDonkey, increased 357% in July 2007 over July 2006, with 32 attacks.
That report comes on the heels of a report by peer-to-peer network monitoring vendor Tiversa, which found contractors and U.S. government employees are sharing hundreds of secret documents on peer-to-peer networks.
In many cases, those users were overriding the default security settings on their peer-to-peer software to do so, according to Tiversa. Robert Boback, Tiversa’s CEO, and retired U.S. Army General Wesley Clark, a Tiversa board member, testified earlier this week before the U.S. House of Representatives Oversight and Government Reform Committee.
The IM attacks where tracked by the Akonix IM Security Center, which is a collaborative effort between Akonix, its customers and other security and messaging vendors.
The code used in the attacks was either brand new code or a variant of earlier code detected by the IM Security Center.
The new worms included Exploit-YIMCAM, Hupigon-SJ, InsideChatSpy, SpyPal, StealthChatMon, Svich and YahooSpyMon.
Akonix officials also said the attacks are moving beyond the nuisance stage and getting more malicious.
“Beginning at the end of last year we started seeing multi stage attacks where IM will deliver a URL and when a person clicks on it they get code loaded that will pull down other code,” says Don Montgomery, vice president of marketing at Akonix.
Montgomery says the IM Security Center also is seeing two stage attacks with the second stage being the downloading of a Trojan that waits for users to log into specific banking sites to activate a key-logging program.
In addition, there are multi-vector attacks where a malicious URL may be delivered by IM but propagated using e-mail or come in via e-mail and go out over IM. And attacks, focused on consumer services AOL, MSN and Yahoo, are beginning to span networks.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (14)
I still haven't seen aBy MarvinK on August 9, 2007, 12:33 pmI still haven't seen a legitimate need for most businesses--and it would be easy to open up to specific tools like Groove. Frankly, if you're supposed to use OpenOffice,...
Reply | Read entire comment
I do believe the next genBy Anonymous on August 3, 2007, 10:53 amI do believe the next gen collaboration software from M$... Groove is a P2P client. Groove is poised to add a lot of features that large corps will jump at.......
Reply | Read entire comment
Block all but TCP port 80By Anonymous on August 2, 2007, 9:50 amBlocking P2P is generalizing! Equal to saying let's block the use of JavaScripting in webpages to avoid virusses and troyans. We use IM (over p2p in Skype) and...
Reply | Read entire comment
"I think bringing up theBy Anonymous on July 30, 2007, 7:16 pm"I think bringing up the question of whether there is a valid use for P2P in the office merely exposes the author as someone who is ignorant of computing. It shows...
Reply | Read entire comment
As a software developerBy Anonymous on July 30, 2007, 6:44 pmAs a software developer deploying new versions, you might use P2P. For example, Blizzard's downloader (used in World of Warcraft) is P2P.
Reply | Read entire comment
View all comments