Security researchers at FaceTime Security Labs have recently identified a new threat to instant messenger users; potentially threaten millions of users across the world. Researchers recently confirmed they had found a self-propagating worm aimed at targeting Yahoo Instant Messenger users. The new worm named yhoo32.explr is reported to install its own browser and hijacks the Internet Explorer homepage.
yhoo32.explr is a self-propagating worm that spreads the infection to all your contacts in Yahoo Instant Messenger. It achieves this in 2 stages; the first being to send a web link that loads a command file onto your pc and proceeds to loads its own web browser called 'Safety Browser'. Safety browser then uses the internet explorer icon to fool users in to thinking nothing has changed, when really it hijacks the personal homepage in Internet Explorer and points users to Safety Browser's homepage demoplanet.tv
Tyler Wells, Senior Director of Research at FaceTime Security Labs says:-
'This is one of oddest and more insidious pieces of malware we have encountered in years. It is the first instance of a complete web browser hijack without the user's awareness. Similar 'rogue' browsers, such as 'Yapbrowser', have demonstrated the potential for serious damage by directing end-users to potentially illegal or illicit material. 'Rogue' browsers seem to be the hot new thing among hackers'.
|
|
