Re: AIM hacked.
Possible ways the intruder is compromising accounts is by using a vulnerability described in the article posted by schummlalala. What happens is the hacker embeds code to make the AIM program look like it has been disconnected and then prompts for you to reenter the username and password. These are sent back to the hacker. The second is to use ActiveX to initiate basically any program they want on the remote computer.
To prevent this: upgrade your AIM clients to the newest beta version.
Also it is very important to limit access to ActiveX, you can do this by clicking on Tools in (IE) and then on security. Set the all zones as high as you can get away with, and then use the custom button to prevent unsigned ActiveX scripts from being executed.
|