Twitter Targeted for Scareware ScamsResearchers at security company Kaspersky have found that attackers like never before, are launching scareware scams off Twitter, the social networking site. To start, the attack produces a 'tweet' or message that includes the phrase "Best Video" as well as provides a malicious web link, which connects to a fake Internet site that supplies a YouTube movie. Users visiting this site are struck with a vicious PDF file through an invisible Iframe. This file contains multiple attack codes that exploit known vulnerabilities. In case the user's PC is affected with one, it facilitates the malware to load fake security software or 'scareware.' Says Senior anti-virus Researcher Roel Schouwenberg for Kaspersky Lab Americas that the scareware falsely warns that malware has infected the applications, consequently they can't be opened or run. EWeek published this on June 1, 2009. Mr. Schouwenberg further says that the scareware is offered with different payment options like a license for two years at $49.95, a license for whole life at $79.95, and a 'System Tuner' that can be bought for $29.95. The whole life license, the System Tuner as well as the premium for whole life at a value of $19.95 are all provided with original checking, reveals Mr. Schouwenberg. Actually Mr. Schouwenberg also discovered the links embedded on the malevolent tweets when he visited various Web forums, proving the fact that the scareware assault was being launched from compromised accounts. Meanwhile Twitter, on May 30, 2009, alerted users about the messages carrying the "Best Video" web link. Later the site said it deactivated the compromised accounts, however it would restore them soon after Twitter itself would sanitize them. In the meantime, since scams against Twitter are occurring continuously since a long while now therefore, it seems Twitter is unable to clean the malware that the attacks are installing. In fact, Mr. Schouwenberg says that there might be more of such assaults against the users of Twitter. The purpose of targeting Twitter is to get users to click links, Mr. Schouwenberg warned. Thus users could be in a quandary if unable to recognize authentic links from the malicious ones. Related article: Twitter Flaw Compels Victims to Follow Hacker’s Account » SPAMfighter News - 6/5/2009 |    |
Dear Reader
We are happy to see you are reading our IT Security News.
We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!
 |  |
