Welcome to P2PNET.net - The original daily p2p and digital news site. Always First!
Register | Login
RIAA News
Cool Stuff
MPAA News
Games / Consoles
News
Music
Movies
TV
Open Source
Mobiles
Advertising
Product News
P2P
Off Topic
Freedom
Politics
Interviews
Security
DRM
Links
Kids and Kartels
Search: 
Search
 
Web P2PNET   
   Search: 
Search
Torrent Site Tracker
Teksavvy
 
Add real-time p2pnet headlines to YOUR site ! Click here to download our newsfeed code
p2pnet - rss feed: http://p2pnet.net/p2p.rss | p2pnet celebrities: http://p2pnet.net/celeb.rss | Mobile? http://p2pnet.net/index-wml.php

Yahoo Yamanner email worm

p2p news / p2pnet: Yoohoo! Yahoo!

That’s a new JavaScript worm called Yamanner with a taste for Yahoo! webmail and groups.

And it’s not an attachment, says F-Secure. Instead, it arrives actually inside the email body and activates automatically when someone merely opens an infected e-mail message with Internet Explorer. "It uses a 0-day vulnerability in Yahoo! webmail system," says F-Secure, pointing out that a poisoned email looks like this:

Subject: New Graphic Site
Body: Note: forwarded message attached.

But, "This type of worm is not a surprise," says the post, "it has been theorized since at least 2001. Yamanner is however the first worm to be realized in the wild."

Yahoo says there’s a remedy forYamanner, "which it said had affected very few of its customers," says Silicon.com, adding:

"A Yahoo! representative said: ‘We have taken steps to resolve the issue and protect our users from further attacks of this worm. The solution has been automatically distributed to all Yahoo! Mail customers, and requires no additional action on the part of the user’."

Also See:
F-Secure - Yamanner - JavaScript worm that targets Yahoo! Mail, June 13, 2006
Silicon.com - Worm finds hole in Yahoo! Mail, June 13, 2006

==================

p2pnet newsfeeds for your site.
rss feed: http://p2pnet.net/p2p.rss
Mobile - http://p2pnet.net/index-wml.php

This entry was posted on Tuesday, June 13th, 2006 at 8:21 am and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

HOME

Viewed 2139 times

« previous BLAM !
YouTube: Yours or theirs? next »

4 Responses to “Yahoo Yamanner email worm”

  1. Reader's Write Says:
    June 13th, 2006 at 1:48 pm

    does this only infect your computer if you open it with internet explorer?

  2. Reader's Write Says:
    June 13th, 2006 at 8:13 pm

    I never, ever, open email from anyone I don’t know. Doing such ensures I will never see an attachment from the majority of emailers, be they legit or spam.

    Since many malwares use the victims’ email addresses in store, those I know that sent me email, will have to tell me to expect an attachment before sending it or it is deleted anyway, unopened. It’s my email account not someone elses, I will use it as I see fit, not as someone else expects me to. Sending psycological ploys to tempt me doesn’t work either as I stand steadfast by those above rules. I guess this is for those like me who believe our email accounts are ours.

    The above won’t work for me either, as I use no Instant Messaging services. For the most, they are so full of spammers and malware oppurtunity seekers that it isn’t worth the time to put them all on block lists, only to have to do it again the next day when they have changed their name/data/ect.

    However the method here is what is of interest to me. Meaning that sometime in the future, this prehaps won’t be enough to do to protect yourself from unwanted intrusions. At present, it requires some action on your part to initiate the malware. Opening an attachment, clicking on a link, or some how doing something so that the malware is allowed into the system. I await the day of the selfactivating malware because it has “showed up” in your inbox without any need of doing anything.

    Spammers and spyware have for the most part guided the malware writers in how to invade systems. Going from having to download a program to activate it, to now just showing up on a website to catch an infection. There are far more reasons to fight spammers and spyware than is seen on the surface. Certainly, I will never, ever, buy from a spammer. I hate such and refuse to reward them with a responce of any nature. I would rather they waste their efforts with no return answer of any nature. The same with the companies that end up on the spammers list of wares; why reward them for obnoxious behavior?

  3. Reader's Write Says:
    June 14th, 2006 at 7:31 pm

    It’s good that you have the “Common sense” not to open e-mails/attachments from those you do not know.

    BUT, you are remiss in one detail here. This worm, known as ‘yamanner’, is contained WITHIN the BODY of the e-mail with “New Graphic Site” as its Subject. This enables the worm to attack WHEN the e-mail is OPENED!!!

    One of the links contained within this article said that Yahoo NOW has it under control, but as an added precaution to add ” av3(at)yahoo.com ” to your Blocked List.

    Actually READING articles ALL the way through …ALONG WITH ALL their LINKS… is TRUE “Common sense”!!! :|

  4. Reader's Write Says:
    June 14th, 2006 at 7:33 pm

    http://p2pnet.net/story/9059

Leave a Reply
    Advertisments
MP3rocket