JS.Yamanner@m: A worm targeting Yahoo! Mail
June 13th, 2006 Leave a comment Visited 49 times, 2 so far today
JS.Yamanner@m: A worm targeting Yahoo! Mail
A mass-mail worm now named JS.Yamanner@m has been detected and it is targeting the users of Yahoo! Mail service. Security application developers Symantec have however said that the impact of this worm is low.
Symantec added that this worm is different from others, as it only requires the user to open the infected mail. Normally, these kinds of worms require the user to run an attachment to get the pc infected.
The worm has been coded in the JavaScript and takes advantage of the security flaw, which allows the browsers to run scripts embedded in HTML e-mail. Users can however disable some settings in the webmail settings to disable this kind of automated behavior.
If the victim opens the infect mail, the worms then sends itself to other users in the victim’s address book who also use Yahoo e-mail. It mimics the function within Yahoo’s Web mail called “Quickbuilder†which add contacts in an address book from received e-mail.
Apparently the good news is that the users of Yahoo! Mail Beta are unaffected by this problem.
News, Security Alert, Web Browsers, Web Services, Web Stuff, webmail services
prathapml
Category: News
|
TechWhack on Facebook
|
One Comment
Leave a Comment
Related Posts
|
Popular Posts
|
June 15th, 2006 at 01:31 am
Is there any information about which browsers are susceptible to this worm? All of them? Knowing that there are differences in both security models and even parts of the JavaScript language, some browsers might be immune just because they are different.