Called yhoo32.explr, this "old fox" worm has the ability to replicate automatically. After being clicked on by the user, it will secretly install a software called "Safety Browser" into the computer, then attack hijack IE's homepage, leading the user to another site.
The most exclusive Yahoo Messenger worm ever Picture 1Source: Infoworld Here, a waiting spyware software, directs users to "sneak" right into the computer. Because Safety Browser uses IE icon icon to disguise it, users can easily identify it with legitimate IE version.
This is the first time people have noted the existence of a form of malware that can install its own Web browser on a computer without the need for a user, security firm FaceTime said.
The yhoo32.explr worm will spread itself to all contacts in Yahoo! Messenger with a "malicious" link. If naive click here, the command file will be downloaded to your computer and the Safety Browser installed in your computer is irresistible.
" This is the most unique, crafty worm we've encountered in years, " said Tyler Well, senior research director for FaceTime.
" This is the first case where a web browser is hijacked completely without users knowing. Using the browser" to "to entice users to malicious and unauthorized content is a potential danger. Very big muscle.
Perhaps this will be the new, "hottest" trend among hackers in the future, "Well predicted.