NEW RISKS FOR INSTANT MESSAGING – SPAM ATTACKS, IM WORMS, PHISHING

The research team at KnightsBridge Castle has been looking into social network instant messaging (IM) and the personal information security risks posed by these technologies. New risks have been identified in the past weeks and we wanted to share with you the evolving risks for IM

IM systems have been hijacked by hackers in recent months and used for the spreading of spam messages. The messages try to trick people into giving up personal information. Included in the personal information scams are the usual elements of Social Security Number and logon information for internet accounts.

Website references on IM have included redirects to phony websites of branded names such as EBAY, Amazon, and others. The website looks real, but as in phishing scams the websites are fraudulent and intent on causing you harm.

IM worms have appeared which propagate themselves from IM user to IM user. These automated systems appear to want to engage in a conversation, but they are intent on propagating malware, spyware, or malicious programs.

We always urge caution in revealing any personal information on the internet. IM is clearly a risk to anyone if personal information is revealed. Caution in using IM systems are warranted, because you can never be sure of whom you are actually communicating with – friend or foe?