Users of Yahoo’s instant messaging service are at risk of falling prey to an online phishing attack, receiving a message claiming that their accounts will be blocked unless they provide feedback.
Company IMLogic (USA) has labeled this attack as IM.Marphish.Yahoo. The content of the spoofed message states that the user has violated the terms they agreed to when registering for their account. To ensure their accounts are not locked, customers are instructed to click on a link that leads to a page containing malicious software. From there, they are directed to a website that closely resembles Yahoo’s login page. The fraudsters will collect all sensitive information that victims enter on this site.
The attack originates from nick ychat_complaint_dept_6b, and it has the potential to morph into many different names during its spread. IMLogic urges companies to enhance their security systems and update their antivirus tools. More information regarding this phishing incident can be found here.
T.N. (according to InformationWeek)
