Hackers used bots to control AOL Instant Messenger if it was installed on computers that did not have the MS06-040 patch.The bot has been dubbed with several names including "Graweg," "Mocbot," "WGAReg," and "Cuebot." It uses an exploit that leverages a vulnerability in Windows Server service, which was patched by Microsoft in its security bulletin MS06-040
The bots were using Windows Genuine Advantage, Microsoft's anti-piracy program to disguise their malicious activity on infected computers.
The AIM control could be a potential vector to allow the controller to trick users into downloading and executing the bot from an external URL.
Microsoft repeated last week's recommendation, and urged all Windows 2000, XP, and Server 2003 users to patch as soon as possible.
Full Story
Get more information and the Patch
No comments:
Post a Comment