14 DAY TRIAL // The popular Yahoo Messenger client is again harming users' computer as nCircle Network Security discovered a new exploit which can allow attackers to infiltrate into an affected system. As Computerworld reports, the security hole affects a fully-patched Windows XP SP2 but it seems like some of the operating systems with certain IE patches might be protected against the threat. According to the reports, the users who installed the last version of Internet Explorer 7 with the default security settings are avoided by the threat. However, Yahoo Messenger is not the only application affected by the flaw as the dangerous file which would allow the attacker to invade a system could be send through almost any instant messaging client.
"This latest exploit is another data point in the strong trend toward IM client attacks. IM vendors jockeying for market share are trying to lure new users with new features that also open up new risks to end users," said Andrew Storms, nCircle's director of security operations, as Computerworld reports.
This is not the first time when the instant messaging clients can affect a user computer because even Yahoo Messenger, which is regarded as the most popular application in the category, was the subject of several security notification. Anyway, is there any chance to remain protected and avoid a successful exploitation of the flaw? Well, it seems like the answer would be yes if you install the latest version of IE 7. In addition, you should avoid clicking on unknown files sent through the instant messaging protocols and ignore the messages coming from untrusted users.
"Enterprise IT teams that have been ignoring IM clients because they are not part of the 'official' infrastructure would be well advised to take steps to bring an IM client onto their supported platform and make sure their antivirus and spyware vendors work with their selected client," the same security expert added for Computerworld.