Instant-Messaging Attacks On the Rise

Ant writes "CNET News.com and ZDNet News report that security attacks over instant-messaging (IM) networks became more prevalent in 2005, according to a new study. MSN experienced the largest number of IM security incidents in both 2004 and 2005, while year-on-year incident growth rates were largest on AIM."

Obvious

[heavy+snowfall]

Obvious, they go to where the easy targets are. As a plus: When you infect a computer connected through AOL the chance of discovery and subsequent removal is smaller. How many granny's on AOL run a firewall+spybot+antivirus etc?

Re:Am I the only one who hasn't noticed it?

[arachnoprobe]

I think it also depends on your buddy-list. The demographical variation in a buddy-list of your average John Doe or Grandma Doe should be very different from someone posting here on slashdot.

Mobile phones

[Rob+T+Firefly]

This is going to cause more and more of a problem not just for Joe Average PC user, but for the growing numbers of people with IM capability on their mobile phones and other devices, where using a clean third-party client is not an option, and where many plans still charge by the message.

It's easy enough to see why...

[Torinir]

IM applications are hot attack vectors.

1. Most instant messenger applications are client dependant. You need YIM/AIM/MSNM clients to talk to others on those IM networks, unlike client independant networks such as IRC.

2. IM programs store contact lists much like a standard email client. Easy to read, exploit and spread.

3. Most IM programs enjoy a high degree of popularity. Higher user counts = faster spreading.

It's probably why I avoid IM programs like the plague.