Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Phishing and Spamming via IM (SPIM) SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Phishing and Spamming via IM (SPIM)
Our reader Robert has shared with us on a case that a malicious file was detected when one of his user click on a link that arrived via MSN messenger. The malicious file is identified by MSNMaker or Licat.gen.

It has been getting common that attackers are hijacking IM for phishing attempts. Most people are getting aware of phishing through email and smarter not to fall into the trap. However, using IM to trick people may still not as well known to most people. You should not blindly trust links received in IM, even if the link comes from a friend. Such links could be part of an IM worm or bait for a phishing scam.

Koon Yaw

68 Posts
Dec 2nd 2006

Sign Up for Free or Log In to start participating in the conversation!