NEWS Instant messaging users are being blighted with an increasing number of threats of terrible viruses which are spreading via the popular peer-to-peer application. But just as email users were regular victims of hoaxes several years ago, so this latest scare is similarly fictitious.
One such hoax, propagated by well-meaning recipients who are urged to share the information with all their contacts, says there is an IM virus out there which will destroy hard drives and wipe data.
According to the hoax, somebody called dvorak@yahoo.com will ask to be accepted onto your contacts list but once accepted the wording of the hoax claims a "horrible virus" will be unleashed.
The message comes with handy instructions for users of the Yahoo! IM application on how they can forward it to all their contacts.
Another hoax, again targeting Yahoo! users instructs all recipients to forward the IM to everybody in their contacts list or face losing their email and IM account, as part of a routine database cleansing.
Typically recipients assume 'better safe than sorry' and forward the messages, but that is when malicious hoaxes come into their own - often they are a simple ruse to bring down networks with a very basic denial of service attack.
The social engineering element is very simple, but proved highly effective with a bout of email hoaxes in 2001 and 2002. Often the fact the emails arrived from a known contact made the advice all the more compelling. Often the message to forward even begins with a statement to the effect of saying the sender has checked out the information and found it to be true.
If all Yahoo! users IM their contacts to warn of this virus and their contacts in terms IM their contacts - forwarded multiple versions of the message - the resultant traffic can be huge and potentially akin to the impact of a genuine self-propagating worm.
One recipient who forwarded the IM to her entire company and buddy list admitted that she realised her mistake with hindsight, but said when under pressure at work and an IM turned up from her boss warning about a virus and asking her to warn the rest of the company she felt immediately compelled to so. Such an IM was evidence that her boss too had already been duped.
"It's really easy to open a file only to find it is a virus, so when you get a message from your boss about a virus with some plausible sounding email addresses mentioned, it seems like a good idea to forward it on to everyone in your buddy list," she said.
"So I did and managed to start the ball rolling on a hoax - exactly as the hoaxers had planned I suppose," she added.
Comments
There are 5 comments. Join the discussion
1. anonymous
Its a pity you have to use a fancy term such as social engineering to something that only an idiot would fall for.
2. anonymous
Whenever I get a virus warning, I always check it out on the AV websites. If it turns out to be a hoax, I will "reply all" and tell them its a hoax, with URLs etc for a full explanation.
Thing is, does this increase or decrease the problem?
3. Ron R.
The hoaxs are why I started my newsletter as most poeple do not know how to check them out. In the 6 years I have been doing it I have seen many of them reappear more than 2 or 3 times. I verify them as to real or hoax, and almost all of them are hoaxs. It is my way of stopping them as I send out an email to my mailing list if I get 2 or more people asking about the same hoax.
4. anonymous
So we now email this to our contacts.....!
5. Eddie
On the latest hoax, you know you have won a holiday press 9.....
Some collegaes have actually now recieved recorded messages saying exactly this.
I asked BT what would happen if we did press 9. Their answer: We don't know.
So if they don't know who does..... over to you mystic meg