Snappy newsletters. Simple Facebook sharing. Spirited comments. Sweet features are waiting… GET THEM NOW!

Security Firm: AIM Is Fatally Flawed

AOL instant messenger software vulnerable to worm attack

By Caroline Zimmerman, Newser User

Posted Sep 26, 2007 6:10 AM CDT

(Newser) – Hackers could exploit a glitch in AOL's instant messaging program and take control of users' computers , a security firm reports. Core Security discovered that the way AIM uses HTML code provides a loophole for hijacking PCs, via a web link that implants a self-copying worm. AOL says it has solved the problem; Core claims the solution doesn't go far enough.

The newer version of AIM could enable crooks to get full access to Internet Explorer's functions and force users to visit malicious websites without their knowledge, PC World reports. AOL has introduced a filtering mechanism to block suspicious content, but Core says hackers could sidestep this hurdle. The best way to reduce risk may be to downgrade to the older AIM 5.9.

« Prev« Prev | Next »Next » Slideshow

To report an error on this story, notify our editors.

More Newser Stories

Google, Yahoo, 13 Others Declare War on Phishing

New set of standards could make email more trustworthy

(NEWSER) - A new anti-phishing effort, backed by the big email service providers as well as banks, PayPal, social networks, and other companies, could dramatically reduce the number of scam emails you get in your inbox. Google, Yahoo, Microsoft, and AOL are backing the new plan; 15 companies in total have come together to create DMARC.org, which officially launches today and will promote standard technologies to authenticate email. The hoped-for end result? If you get an email that claims to be from paypal.com, you could trust that it is actually from paypal.com. If it works, companies would be able to communicate with customers in new ways, the Wall Street Journal reports. More»

'Here You Have' Virus Slams Major Firms

Spam worm halts work at NASA, Comcast

(NEWSER) - An email spam virus swept through corporate America's inboxes yesterday, causing servers to be shut down at major operations including Comcast, AIG, Disney, and NASA. The virus spread through emails with the subject line "Here you have," which contained a link that downloads a virus that sends the same email to everybody in a user's address book. The Department of Homeland Security is investigating, reports ABC News . More»

Germany Urges Ditching Internet Explorer

Security flaw in browser allowed attack on Google

(NEWSER) - The German government is urging Internet Explorer users to switch browsers, after Microsoft admitted that IE security failures allowed the recent attacks on Google’s systems. Microsoft has protested, saying that the security hole can be shut by setting the browser’s security zone to “high,” though doing so will limit its functionality and block some web pages. Besides, “these were not attacks against consumers,” a spokesman argued. “There is no threat to the general user.” More»

Virus 'Scareware' Scams Millions

Alarming virus warnings part of major rip off

(NEWSER) - Alarming warnings that internet surfers' computers are being invaded by a devastating virus are almost always scams used to either hack into computers or rip off consumers for phony protective software. More than 40 million people have fallen victim to the "scareware" scam in the past year. Experts have identified some 250 versions of the scareware scam, and estimate that crooks make $1.2 million selling fake software alone. More»

Conficker Worm Springs Into Action

Mysterious update begins to spread; millions vulnerable

(NEWSER) - The Conficker worm is showing signs of life a week later than expected, but experts aren’t quite sure what it’s doing, the BBC reports. The program, believed to be on millions of PCs worldwide, began updating itself last night, downloading encrypted software, researchers at Trend Micro found. The worm’s peer-to-peer communications are “now running in full swing,” warned a tech blogger. More»

NEWS FROM OUR PARTNERS

What is Newser?

Face it: there's too much news. At Newser, we choose the most thought-provoking and entertaining stories from hundreds of US and international sources and reduce them to a headline, picture, and two paragraphs. And we do it 24/7—you can come back morning, noon, night (and in between) for something new that matters. Read less, know more.

Learn more »

Partnering with: Slate

View Newser on the mobile website

Security Firm: AIM Is Fatally Flawed

AOL instant messenger software vulnerable to worm attack

OTHER STORIES ON OUR RADAR

AOL • Internet Explorer • computer virus • Internet security • AOL Instant Messenger • computer

MOST POPULAR STORIES

[ By Views ]

[ By Comments ]

More Newser Stories

Google, Yahoo, 13 Others Declare War on Phishing

New set of standards could make email more trustworthy

'Here You Have' Virus Slams Major Firms

Spam worm halts work at NASA, Comcast

Germany Urges Ditching Internet Explorer

Security flaw in browser allowed attack on Google

Virus 'Scareware' Scams Millions

Alarming virus warnings part of major rip off

Conficker Worm Springs Into Action

Mysterious update begins to spread; millions vulnerable

About Us

Site

Newser By Users

Community

Site Maps

Tools

More News

What is Newser?

Security Firm: AIM Is Fatally Flawed

AOL instant messenger software vulnerable to worm attack

Bookmark & Share

OTHER STORIES ON OUR RADAR

AOL • Internet Explorer • computer virus • Internet security • AOL Instant Messenger • computer

MOST POPULAR STORIES

[ By Views ]

[ By Comments ]

More Newser Stories

Google, Yahoo, 13 Others Declare War on Phishing

New set of standards could make email more trustworthy

'Here You Have' Virus Slams Major Firms

Spam worm halts work at NASA, Comcast

Germany Urges Ditching Internet Explorer

Security flaw in browser allowed attack on Google

Virus 'Scareware' Scams Millions

Alarming virus warnings part of major rip off

Conficker Worm Springs Into Action

Mysterious update begins to spread; millions vulnerable

About Us

Site

Newser By Users

Community

Site Maps

Tools

More News

What is Newser?