Slashdot Mirror


Instant Messaging Vulnerable To New Smiley Attacks

titus writes "Security researchers Yoann Guillot and Julien Tinnes have found a way to encode malicious code into smileys and provided a proof of concept encoder to automate the process. The researchers said their discovery paves the way for IM malware that would be impossible to detect since the malicious code would be 'indistinguishable from genuine chat messages.' I've tested the proof of concept code which works very well. Time to panic?"

2 of 170 comments (clear)

  1. The problem with /. April fool's... by PinkyDead · · Score: 5, Insightful

    ...is that some of the real stories are less plausible.

    --
    Genesis 1:32 And God typed :wq!
  2. Re:Stop. Really, just stop by MobileTatsu-NJG · · Score: 5, Insightful

    Flamebait??? He's spot on. Mod him "goddamn right!"

    Slashdot is operational 364 days a year. One day of silliness and it's BITCHBITCHBITCHBITCHBITCH. Your problem's between the chair and the keyboard.

    --

    "I like to lick butts!" by MobileTatsu-NJG (#32700246) (Score:5, Informative)