New Yahoo Worm Targets All Yahoo Email - Yamanner Worm Has No Manners at All - 2,589 Views, 3 Comments
|
Previous Article « Robert Scoble Quits Microsoft to Join PodTech.net
Read Next Article » More Electronic Babysitters for the Kids with Verizon’s Chaperone, Tmobile kidConnect, and Disney Mobile Cell Phones and Service for Children
A new Yahoo worm being called the “Yamanner worm” is targeting all of Yahoo email; in fact the only version of the Yahoo email program which is at present safe from the Yamanner Yahoo email worm is a not yet fully released beta version of Yahoo mail. The Yamanner worm takes advantage of a Java script flaw in Yahoo mail, which means that the Yahoo user doesn’t have to do anything other than just open the email bearing the Yamanner worm. Once the email is open, the Yahoo mail worm infects the user’s computer, sends itself to everyone in the user’s Yahoo address book, and sends all of those Yahoo email addresses back to a remote site (presumably that of the Yamanner author, who can then sell those email addresses or use them themselves for spamming). So far, that email has always carried the subject “New Graphic Site”, but as people get smart to that, there is no reason to think that Yamanner’s author won’t change that. As of this morning, the worm had hit Yahoo’s server at least 100,000 times. No patch is available at present, however Yahoo has said that they are working on fixing the flaw. “We have taken steps to resolve the issue and protect our users from further attacks of this worm. The solution has been automatically distributed to all Yahoo Mail customers, and requires no additional action on the part of the use,” said a Yahoo spokesperson. So what should you do? For at least a few days, be hypervigilant about the email you receive through Yahoo mail, and check it carefully before opening it. If you don’t recognize the sender, or even if you do recognize the sender but the subject is “New Graphic Site”, don’t open it!
Follow Anne on Twitter
New Yahoo Worm Targets All Yahoo Email - Yamanner Worm Has No Manners at All
Twitter Explained in Plain English
Previous Article « Robert Scoble Quits Microsoft to Join PodTech.net
Read Next Article » More Electronic Babysitters for the Kids with Verizon’s Chaperone, Tmobile kidConnect, and Disney Mobile Cell Phones and Service for Children
Read more:
» Santa Worm Making the Rounds - You Better Watch Out!
» New Viruses for AOL and Yahoo Instant Messengers for the Long Weekend
» Bad Enough it’s an Email Worm, Now MyDoom is Rude, Too
» AIM Gpic.aol Worm Says “damn this looks just like me lol”
For additional similar stories check out our archives on Security, Worms, Yahoo
NOTE: We never, ever, ever will recommend any product or service on this site that we have not regularly used ourselves and do not wholeheartedly believe in. That said, in some cases after being very pleased with a product or service, we may enter into a relationship with the provider of that product or service such that if someone purchases that product or service based on our recommendation, we may get a small payment. Such payments go towards the upkeep of the Internet Patrol.
I noticed one of their fixes last night when I tried to forward a message to someone in my address book. There was a captcha screen to go through. Not a bad short term solution. A little annoying, but probably pretty effective.
Comment by cybele — 6/13/2006 @ 10:06 am
so how do you rid your machine of it? anybody have a fix yet?
Comment by jo — 6/14/2006 @ 2:40 pm
The only solution is NOT TO OPEN A MAIL WITH SUBJECT “New Graphic Site”. And if unfortunately you have been hit, then just RELAX because the worm has done its work already (sending mails from your account to all you address book entries and sending a copy of contacts to remote server).
Comment by Awan — 6/14/2006 @ 9:15 pm