Online Computer Tips Home
Home All Tips OCT Newsletter Free Tutorials Tech News Resources

Monday, August 14, 2006

Hackers Take Advantage of Windows Security Vulnerability

Hackers used bots to control AOL Instant Messenger if it was installed on computers that did not have the MS06-040 patch.The bot has been dubbed with several names including "Graweg," "Mocbot," "WGAReg," and "Cuebot." It uses an exploit that leverages a vulnerability in Windows Server service, which was patched by Microsoft in its security bulletin MS06-040

The bots were using Windows Genuine Advantage, Microsoft's anti-piracy program to disguise their malicious activity on infected computers.

The AIM control could be a potential vector to allow the controller to trick users into downloading and executing the bot from an external URL.

Microsoft repeated last week's recommendation, and urged all Windows 2000, XP, and Server 2003 users to patch as soon as possible.

Full Story

Get more information and the Patch

No comments: