New virus identified on Yahoo! Messenger

May 22, 2006
Yahoo logo

Users of Yahoo! Messenger beware, a new worm is on the loose.

Researchers at FaceTime Security Labs have identified a new threat -- yhoo32.explr, a self-propagating worm that installs "Safety Browser" and hijacks the Internet Explorer homepage, leading users to a site that puts spyware on their PCs, said the security research firm.

Moreover, the worm spreads the infection to all contacts within an individual's messenger service by sending a Web site link that loads a command file onto the user's PC and installs the Safety Browser.

This is the first recorded incidence of malware installing its own Web browser on a PC without the user's permission, according to FaceTime Security Labs.

"This is one of oddest and more insidious pieces of malware we have encountered in years," said Tyler Wells, senior director of research at FaceTime Security Labs. "This is the first instance of a complete web browser hijack without the user's awareness. Similar 'rogue' browsers, such as 'Yapbrowser,' have demonstrated the potential for serious damage by directing end-users to potentially illegal or illicit material. 'Rogue' browsers seem to be the hot new thing among hackers."

Copyright 2006 by United Press International

Explore further: The only safe email is text-only email

Related Stories

The only safe email is text-only email

September 11, 2017

It's troubling to think that at any moment you might open an email that looks like it comes from your employer, a relative or your bank, only to fall for a phishing scam. Any one of the endless stream of innocent-looking ...

Improving web security without sacrificing performance

September 7, 2017

Chances are, you're reading this article on a web browser that uses HTTPS, the protocol over which data is sent between a web browser and the website users are connected to. In fact, nearly half of all web traffic passes ...

Judge sets $30K bail for UK researcher in malware case

August 5, 2017

A Las Vegas federal judge set bail of $30,000 on Friday for a celebrated young British cybersecurity researcher accused by U.S. prosecutors of creating and distributing malicious software designed to steal banking passwords.

Recommended for you

When words, structured data are placed on single canvas

October 22, 2017

If "ugh" is your favorite word to describe entering, amending and correcting data on the rows and columns on spreadsheets you are not alone. Coda, a new name in the document business, feels it's time for a change. This is ...

Enhancing solar power with diatoms

October 20, 2017

Diatoms, a kind of algae that reproduces prodigiously, have been called "the jewels of the sea" for their ability to manipulate light. Now, researchers hope to harness that property to boost solar technology.

0 comments

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.