Phishing and link spam spreading on MSN
Anyone getting Instant Messages containing URLs should be even more careful in future, even if the messages are from friends. An avalanche of phishing is now roaring through Microsoft's MSN network, luring recipients to a page that asks for their MSN login data. Those who respond will find themselves on a page displaying a few photographs, which are linked to search queries.
Evidently a background script checks whether these access data are useful by logging in to MSN as the user. Shortly thereafter, all the account holder's friends are sent messages containing URLs that take them to similar pages.