3. Don't chat with people not on your contact list
Always vet your contact list with people whom you know something about. Talking with Mr. Anonymous at the other end of space may be fraught with risk. It is possible to discover your computer address (i.e. your IP) from an instant message and that usually is the first requirement for a remote hack attack.
Although most tips may appear to be common sense, it is often the ones that are that tend to be overlooked the most. Remember it doesn't take much to stay safe, but it can be a pain to fix.
MakeUseOf: Instant Messenger Hacks: 10 Security Tips to Protect YourselfEven if the site appears to look like a Live ID sign in page, look for the green address bar, lock icon and company name to verify it truly is. Additionally, depending in your Windows version, browser and Live ID site you're signing into, you might need to click the ‘Sign in using enhanced security’ link on the page to see these indicators.
Finally you'll arrive at the password changing page and can change your password. One minor feature that’s been added recently is an option to prompt you to change your password every 72 days. I'm not quite sure how this will work with regards to Messenger yet, but time will tell.
View Kay's outline of Messenger phishing and the steps to follow if you have been affected
We at Messenger Stuff would like to warn people not to open or follow any links in these emails and instead report them as junk and/or spam as well as delete them.
Currently there is no Messenger 9.5 available in public or private beta testing so for the sake of your computer's health do not open or download anything from these emails It's highly likely to only lead you to a virus, worm, spyware, malware or other nasty that really you don't want on your computer.
Take care. We'll have news covering the Messenger Plus! Live skinning contest and our favourite entries coming soon.
The FBI have even warned about a virus going around, and have issued a press statement about the Storm Worm. It says:
If you unexpectedly receive a Valentine's Day e-card, be careful. It may not be from a secret admirer, but instead might contain the Storm Worm virus.
The Storm Worm virus has capitalized on various holidays in the last year by sending millions of e-mails advertising an e-card link within the text of the spam e-mail. Valentine's Day has been identified as the next target.
Just remember; be careful, don't click on any suspicious links contacts send you within Messenger and don't accept file downloads unless you know what they are.
Source: mess.be
View the press release by the FBIOne of my friends sent me a message today and I realised she had gotten one (her little sister clicked a link she shouldn't have).
IM-Names is a virus that will send your contacts messages that look like this:
Get the best screen names on website-removed
Like always, a quick google search provides a quick fix:
1. Close Messenger.
2. Goto 'Start' then 'Run' and type 'msconfig'. A new window should appear.
3. Click on the tab at the top right that says 'Startup'.
4. Untick the box next to 'IM-Names'. (If you cannot find it skip this task)
5. Click 'ok' and when it asks if you want to restart your computer say no.
6. Press 'Ctr' + 'Alt' + 'Del'. Find the process that says 'IM-Names' and click End Task.
The virus has now been deactivated!
To remove it fully follow these instructions:
1. Search your computer for all files called "IM-Names".
2. Delete all files that it finds.
3. Empty your Recycle Bin.
The virus has now been fully removed!
I suggest that you warn your contacts via e-mail that they may have gotten the virus, and that they can remove it with the above instructions.
Here are, however, a few tips you should always follow (and which you should encourage your contacts to follow as well):
- Never, ever download something you don't have proof is safe
- Never go to a link from anyone unless your contact tells you what it is
- If a link is given from a contact and it doesn't seem like they would link you there, they're probably infected
- Last but not least, never get any Messenger Add-ons that aren't talked about anywhere, they are probably not safe
IM-Names removal instructions
Get safe instant messenger names
Get safe addons and tools for Windows Live Messenger
Tell us about known viruses and solutions!The worm sent a message to your contacts with filenames like 'LMAO.pif' to lure in its victims. On execution it would do many things, depending on the variant. From swapping your right and left buttons on your mouse to creating a back-door to steal certain details about you. It was hopping mad, you couldn't escape it. It seemed everyone was infected.
The drama ended when the blocked extensions were introduced in MSN Messenger 7.0, it blocked extensions like .pif as well as others that could pose as a threat. The worm died out. However, it seems to of made a return ...
Acting as a link to a .jpeg file, it does the same job, but has a different way of spreading. Using a link containing something like 'pictures.php?photo656.jpg' it tricks you into thinking it is an image, but you are offered to download a .pif file in your browser. Of course it is not as easy to spread, but many will fall for the trap and damn is that worm annoying. Be careful, watch the links your contacts have sent you, Bropia has returned!
It sends messages like "check out these pics of us! http://~~~~~.pics-myspace.info", but the file leads you to download an .exe and if that is ran it will send the same message to all your contacts. No real damage from this one is known, but your contacts won't be too happy with you that's for sure. Remember instant messengers are a target for viruses and worms so be careful.
Someone called Serena has posted a guide on how to remove it on her blog. I won't quote it here so if you do have it and want to remove it then have a look at her blog post.
For more help visit the comments on this subject at Fanatic Live.
Instructions on how to remove the MySpace messenger worm
More help about removing this worm at Fanatic LiveOne known as the Black Angels attack sends the following messages to your Messenger contacts: 'jaja look a that fantasma.zip' and 'mira este video fantasma.zip jaja'. This only appears to be affecting French users, but it is easy to be fooled no matter what language the text is in. The file looks like it is in Windows Media Player file format, but in reality it is a zipped folder. According to Panda Software it disables your registry editor, task manager and attempts to end your anti virus processers. Other than that no direct harm to your files has been detected but it opens a whole new load of annoyances and security flaws by doing this, so be careful.
The second is really a nuisance worm. It sends messages like "check out these pics of us! http://~~~~~.pics-myspace.info", but the file leads you to download an .exe and if that is ran it will send the same message to all your contacts. No real damage from this one is known, but your contacts won't be too happy with you that's for sure. Remember instant messengers are a target for viruses and worms so be careful.
View source for Black Angels worm
View source for MySpace wormNugache.A copies itself into the Windows system folder called MSTC.EXE, generates Windows registry entries, and opens up several ports for hackers to gain access to the infected computer. Later on it sends a instant message to all your online MSN/Windows Live Messenger contacts asking them to accept a file named ATTACHMENT, BACKUP, DETAILS, DOCUMENTS or FORWARDED.
What ever you do, do not accept any of these files as they are viruses and can harm your computer. The threat maybe low, but the virus can trigger off your computer to download more serious viruses. So if you have the virus on your computer, it may cause little damage or serious damage, depending on your circumstances.
Panda Software virus definition
Source: Mess.BeThe virus is posing as MsgPlusLive 4.0.2006.0566, well the latest WLM version is 566, and the year is 2006 so it looks ok, but I can ensure this is not the correct version. In fact, there is no leak of the program what so ever and if there were, you would not be able to sign in. Please be careful what you find, when the program is out you can finally use it, although it maybe a while.
You really should look forward to the update, all I can say is that it is amazing and I am sure you will love it. Be careful what you download!

Messenger Stuff