The site is used to enhance user profiles for AOL Instant Messenger. The malware then displays fake "security warnings" to affected users, according to a post on the McAfee Avert Labs weblog by researcher Allysa Myers.
What makes the scam even more disturbing is that BuddyProfile.com is most popular with teenagers, she said.
Researchers likened sites allowing users to embed HTML content into profiles to restaurants letting customers bring in their own food to sell.
One researcher characterized the situation as, "I'll take the salmonella and the botulism to go, please," according to the McAfee blog.
An Avert Labs representative could not immediately be reached for comment.
Researchers have warned that IM is a growing threat to corporate America's network security because of the growing number of employees that use the platform - many unregulated by administrators.
Links to malware within user-designed profiles are nothing new, according to McAfee. The Santa Clara, Calif. company warned of malicious user profiles on MySpace.com numerous times this summer.
Click here to email Frank Washkuch Jr.
_(36).jpg&h=140&w=231&c=1&s=0)
_(33).jpg&h=140&w=231&c=1&s=0)
.jpg&h=140&w=231&c=1&s=0)
iTnews Cloud Covered Breakfast Summit
Huntress _declassified Virtual Event
Live & Hands On Demo: Navigating the BMC AMI DevX Platform to Understand Code Faster Using AI
Melbourne Cloud & Datacenter Convention 2026
iTnews Executive Retreat - Data & AI Edition
_(1).jpg&h=140&w=231&c=1&s=0)
