| Never before with Instant Messaging (IM) has | | | | following results |
| a more vital warning been needed for current | | | | |
| and potential IM buddies who chat on line. | | | | Terminates processes |
| | | | |
| John Sakoda of IMlogic CTO and Vice President | | | | Removes registry entries |
| of Products stated that, | | | | |
| | | | Stops services |
| \"IM viruses and worms are growing | | | | |
| exponentially.Virus writers are now shifting | | | | Deletes files |
| the focus of their attack to instant | | | | |
| messaging, which is seen as a largely | | | | Hackers, who have gained access to your |
| unprotected channel into the enterprise.\" | | | | computer, because of the easily accessible |
| | | | programs and software as mentioned above, are |
| Because Instant Messaging operates on | | | | enthusiastically incorporating this venomous |
| peer-to-peer (P2P) networks, it spawns an | | | | little program into their arsenal of weapons. |
| irresistible temptation for malicious | | | | |
| computer hackers. P2P networks share files | | | | As recently as March 4, 2005, a new Trojan |
| and operate on industry standard codec | | | | horse was discovered that modified settings |
| (encyrption codes) and industry standard | | | | in Internet Explorer. Windows 2000, Windows |
| protocols, which are publicly open and | | | | 95, Windows 98, Windows Me, Windows NT, |
| interpretable. Anti virus software does not | | | | Windows Server 2003, and Windows XP were the |
| incorporate protection for Instant Messaging | | | | reported systems that could be affected. |
| services. | | | | |
| | | | On January 28, 2005, a press Release issued |
| Like sharks in a feeding frenzy, these hacker | | | | by the Department of Justice reported that a |
| mercenaries view Instant Messaging clients as | | | | 19 year old was convicted for his criminal |
| their personal Cash Cow because of the ease | | | | activity by creating and unleashing a variant |
| by which they can access your computer via | | | | of the MS Blaster computer worm. Christopher |
| the publicly open and interpretable | | | | Wray, Attorney General Criminal Division |
| standards, unleash a Trojan horse, virus, or | | | | stated that, |
| worm, as well as gather your personal and | | | | |
| confidential information, and sell it to | | | | \"This malicious attack on the information |
| other depraved reprobates. | | | | superhighway caused an economic and |
| | | | technological disruption that was felt around |
| Please, dont be nave enough to think it wont | | | | the world. |
| or couldnt happen to you! | | | | |
| | | | By the way, malicious is defined by Webster |
| Want to see how easy it is for hackers to | | | | as intentionally mischievous or harmful. |
| access your Instant Messaging chat and what | | | | |
| can happen to you as a result? | | | | On February 11, 2005, in a Press Release |
| | | | issued by the Department of Justice, reported |
| Did you know that some hacker-friendly | | | | that another criminal was sentenced for |
| providers offer processor chips that can be | | | | circulating a worm. This worm,directed the |
| bought on the Internet? (I guess it would be | | | | infected computers to launch a distributed |
| pretty hard to walk into a store and ask the | | | | denial of service (DOS) attack against |
| clerk to help them find a processor chip that | | | | Microsoft\'s main web site causing the site |
| could be used to illegally hack into a | | | | to shutdown and thus became inaccessible to |
| victims computer for the sole purpose of | | | | the public for approximately four hours. |
| spreading malicious code or stealing someones | | | | |
| identity!) | | | | March 7, 2005, posted discovery of a worm |
| | | | named W32.Serflog.B that spread through |
| Did you know that hacker-friendly providers | | | | file-sharing networks and MSN Messenger |
| actually offer hacker software that enables | | | | networks that operate on publicly open and |
| these criminals to deliberately disable | | | | interpretable industry standards administered |
| security on computers, access your personal | | | | by P2P systems that host Instant Messaging |
| and confidential information, as well as | | | | clientsnone of which are protected, |
| inject their Trojan horses, viruses, and | | | | regardless of the anti virus software on your |
| worms? | | | | computer. The W32.Serflog.B worm also lowers |
| | | | security settings and appears as a blank |
| Hacker manuals are also conveniently | | | | message window on the MSN Messenger. |
| accessible via the Internet. One of these | | | | |
| manuals shows how to DoS other sites. DoSing | | | | SOLUTION |
| (Disruption of Service) involves gaining | | | | |
| unauthorized access to the command prompt on | | | | Avoid at all costs, P2P file sharing networks |
| your computer and using it to tie up your | | | | as they operate on publicly open and |
| vital Internet services. When a hacker | | | | interpretable industry standards. (Instant |
| invades your system, they can then delete or | | | | Messaging services run on P2P file sharing |
| create files and emails, modify security | | | | networks.) |
| features, and plant viruses or time bombs | | | | |
| onto your computer. | | | | If you like the convenience of text chatting |
| | | | via Instant Messaging, then why not consider |
| Sniff is a tool (originally intended to help | | | | an optimally secure VoIP (voice over internet |
| telecommunication professionals detect and | | | | protocol), also known as a Computer Phone, |
| solve problems) that reprobate hackers use to | | | | that incorporates the Instant Messaging |
| tamper with the protocol and sniff out data. | | | | feature. Make sure the VoIP internet service |
| When hackers sniff out your IM data packet | | | | provider does not operate on P2P file sharing |
| from Internet traffic, they reconstruct it to | | | | networks that use industry standard codec or |
| intercept conversations. This enables them | | | | industry standard protocols that are publicly |
| to eavesdrop on conversations, gather | | | | open and accessible. (Dont forget, these |
| information, and sell it to other depraved | | | | standards create the vulnerability which |
| criminal entities. | | | | hackers are capitalizing on because of their |
| | | | easy accessibility.) |
| Dont set yourself up to be the next Identity | | | | |
| Theft Victim because you like to chat using | | | | Optimally secure VoIP service providers that |
| Instant Messaging. | | | | incorporate a secure Instant Messaging |
| | | | feature, operate from their own proprietary |
| Identity theft is one of the most sinister of | | | | high end encryption codec on patented |
| vulnerabilities you can inadvertently be | | | | technology which is hosted in a professional |
| subjected to. Identity theft is defined by | | | | facility. Simply put, when a VoIP internet |
| the Department of Justice asthe wrongful | | | | service provider is optimally secure, the |
| obtaining and using of someone elses personal | | | | Instant Messaging feature on the VoIP |
| data in some way that involves fraud or | | | | softphone is also incorporated in their |
| deception, typically for economic gain. | | | | optimally secure technology. |
| | | | |
| Identity theft is the by-product of hacker | | | | Heres the bottom line. |
| mercenaries obtaining your social security | | | | |
| number (including those of your spouse and | | | | If you are currently using Instant Messaging |
| children), your bank account, your credit | | | | of any sort, you need to make a decision:a. |
| card information, etc., from the Internet. | | | | Continue enticing hacker mercenaries and |
| You become a virtual Cash Cow for hackers as | | | | remain as a user of an Instant Messaging |
| your information is then sold to other felons | | | | service, orb. Take immediate corrective |
| for financial gain. Using your information, | | | | action. |
| these criminals then:access your bank account | | | | |
| fundscreate new bank accounts with your | | | | If you decide to take immediate corrective |
| informationcreate drivers licensescreate | | | | action: |
| passports | | | | |
| | | | 1. Find an optimally secure VoIP internet |
| Attorney General Ashcroft stated that, | | | | solution provider that includes the Instant |
| | | | Messaging feature in their proprietary |
| \"Identity theft carries a heavy price, both | | | | patented technology. |
| in the damage to individuals whose identities | | | | |
| are stolen and the enormous cost to | | | | 2. Find an optimally secure VoIP internet |
| America\'s businesses. | | | | solution provider that has their own |
| | | | proprietary high end encryption codec. |
| A group hosting a website known as was | | | | |
| indicted on conspiracy charges for stealing | | | | 3. Find an optimally secure VoIP internet |
| credit card numbers and identity documents, | | | | solution provider that has their own |
| then selling them online. While this group | | | | proprietary patented technology. |
| allegedly trafficked $1.7 million in stolen | | | | |
| credit card numbers, they also caused losses | | | | 4. Find an optimally secure VoIP internet |
| in excess of $4 million. | | | | solution provider that hosts their |
| | | | proprietary patented technology in a |
| According to a Press Release issued by the | | | | professional facility. |
| Department of Justice on February 28, 2005, a | | | | |
| hacker was convicted of several counts of | | | | Heres a place you can look over to see what |
| fraud, one in whichhe fraudulently possessed | | | | an optimally secure VoIP internet solution |
| more than 15 computer usernames and passwords | | | | provider looks like--one that operates on |
| belonging to other persons for the purpose of | | | | their own proprietary high end encryption |
| accessing their bank and financial services | | | | codec with their own proprietary patented |
| accounts, opening online bank accounts in the | | | | technology hosted in a professional facility, |
| names of those persons, and transferring | | | | AND one that incorporates the Instant |
| funds to unauthorized accounts. | | | | Messaging feature. |
| | | | |
| Trojan Horses, Viruses, and Worms The Toxic | | | | Dee Scrip is a well known and respected |
| Trio | | | | published author of numerous articles on |
| | | | VoIP, VoIP Security, and other related VoIP |
| According to Dictionary.com, a Trojan horse | | | | issues. Other articles can be found at |
| is a subversive group that supports the enemy | | | | |
| and engages in espionage or sabotage---an | | | | **Attn Ezine editors / Site owners ** |
| enemy in your midst. The toxic cargo of | | | | |
| Trojan horses can include viruses or worms. | | | | Feel free to reprint this article in its |
| | | | entirety in your ezine or on your site so |
| A Trojan horse is a program that Internet | | | | long as you leave all links in place, do not |
| criminals use to interrupt and interfere with | | | | modify the content and include the resource |
| your security software and produce the | | | | box as listed above. |