14 DAY TRIAL // Symantec has issued a warning related to adware being served via Windows Live Messenger. The Cupertino based security company describes not a form of instant messaging spam or malware spreading via Microsoft's IM client, but the results of a social engineering scheme designed to make users become victims of adware. Symantec informed that any unsolicited message coming via Windows Live Messenger from persons in the contact list and pointing to a website containing the reference "messengerweb" (the complete address was removed), is in fact of a malicious nature.
Messages such as "Get surprise at messengerweb Unbelievable!", "Hey, messengerweb helps u find out who is your friend!" and "U have deleted me! Look here messengerweb" are used as incentives to trick users into handing over their Windows Live Messenger sensitive data.
"Was this a new worm? Or a bot that was sending out IM spam? Turns out it is neither and instead much more like adware. The site being advertised states they can find out who may have removed you from their contact list. All the service requires is for you to "enter your MSN account and password and we will tell you who has left you out from their lives." However, if you read the fine print, it states "By using this service the user allows Messenger-Tips to send intant messanges [sic] to your online contacts and/or change temporarily the nickname in order to advertise free this service,"" revealed Eric Chien, Symantec Security Response Engineer.
There is no malware associated with messengerweb, but this could be just a temporary scenario subject to change. However, even if there is no malicious code involved, the website is designed to steal Windows Live Messenger credentials. "So, these messages aren't coming from a bot or a worm, but friends on your contact list who have given out their username and password to this service. The service then sends messages to everyone on their contact list. As usual, we recommend that you do not give out your account details to third parties."