The victims complained that they received messages on America Online's AOL Instant Messenger service that lured them to Web sites containing a JPEG that contained the malicious code.Source: The Inquirer
The messages told the users to "Check out my profile, click GET INFO!" But when they visited the site, the malicious code would attempt to install backdoor software.
Additionally, messages containing a link to the site would be sent out to all contacts on the victim's instant messenger contacts list.
The ISC said the attempts failed but showed that hackers were starting to build code using the JPEG vulnerability.
Instant Messaging JPEG virus discovered
Posted on Thursday, Sep 30 2004 @ 17:34 CEST by Thomas De Maesschalck
A new JPEG virus is floating on the web that spreads through instant message clients. Researchers at ISC have had two reports of a worm being installed using AOL Messenger.