CibbuanoMyspace users...watch out for the Worm attack.
December 5th 2006 12:47
Everyone who users Myspace please be warned. There is a worm that uses QuickTime player that has hit the Myspace. It is said that almost one third of the user profiles are infected with this worm.
This utilises a weakness in myspace and exploits the HREF track function in the QT player.
The movie when played re-directs the browser to a phishing site and is presented with a fake login page which looks exactly like the Mypace login page.
The worm places fake links on the infected page that will take the user to a fake page and also it sends out messages to all the people in the contact list of the infected Mypace user. The message comes in the form of a porn movie and which when clicked on re-directs the user to a page that installs adwares. So even if your page is not infected watch out for this messages. Also when you visit a page watch out for the QT movie and don't open it or do not click on any links.
It is said that the fake login page also has a blue navigation bar which is unlike what you see in the real Myspace page.
This was spotted on the 1st of this month by Websense and is reported that a lot of users are already effected. Websense asks people to Watch out for an empty QuickTime video or modified links in the MySpace header section, or both.
Now apart from the fake login pages that was reported about a month back and the fake YouTube videos that re-directed users to adware page it is time for the QuickTime worm to exploit the Myspace weakness.
Be careful guys.
you can read the Websense report here.
This utilises a weakness in myspace and exploits the HREF track function in the QT player.
The movie when played re-directs the browser to a phishing site and is presented with a fake login page which looks exactly like the Mypace login page.
The worm places fake links on the infected page that will take the user to a fake page and also it sends out messages to all the people in the contact list of the infected Mypace user. The message comes in the form of a porn movie and which when clicked on re-directs the user to a page that installs adwares. So even if your page is not infected watch out for this messages. Also when you visit a page watch out for the QT movie and don't open it or do not click on any links.
It is said that the fake login page also has a blue navigation bar which is unlike what you see in the real Myspace page.
This was spotted on the 1st of this month by Websense and is reported that a lot of users are already effected. Websense asks people to Watch out for an empty QuickTime video or modified links in the MySpace header section, or both.
Now apart from the fake login pages that was reported about a month back and the fake YouTube videos that re-directed users to adware page it is time for the QuickTime worm to exploit the Myspace weakness.
Be careful guys.
you can read the Websense report here.
| 50 |
| Vote |
Subscribe to this blog
