Sophos's recent Security Threat Report highlighted the growing number of attacks we are seeing via social networks such as Facebook and Twitter. In fact, 21.2% of those polled said that they had been on the sharp end of malware spread via a social networking site.
One thing that is sometimes forgotten, however, is that it's not just world famous social networking sites which can be exploited by cybercriminals. There are plenty of Facebook "clones" (for want of a better word) that have sprung up in countries around the world and have strong local followings.
One such social networking website is Renren, formerly known as Xiaonei Network, which is extremely popular in China with some 40 million registered users (making it more successful than Facebook in the country).
Boris Lau, one of the analysts in our labs, has blogged about a XSS (cross-site scripting) worm that has spread via user profiles on Renren, posing as a video of Pink Floyd's classic song "Wish you were here".
Clicking on the message results in a malicious JavaScript being run on your computer which in turn helps the malware spread further across the social networking site. Sophos detects the worm asW32/Pinkren-A.
(By the way, the Yupoo.com site advertised in the image above is a popular photo-sharing site in China).
XSS vulnerabiliies are nothing new to social networking sites of course, and can be a highly effective way to spread malware quickly.. For instance, earlier this year we saw the Mikeyy worms spread rapidly through Twitter.
So, don't forget, if you're really keen to watch a video of Pink Floyd's classic golden oldie "Wish you were here", your best bet might be to buy a concert DVD or do a quick search on YouTube:
'IT 보안소식' 카테고리의 다른 글
| 브라우저를 종료시키는 악성코드 (0) | 2009.09.01 |
|---|---|
| 제1회 해킹 And 리버스 엔지니어링 대회 결과발표 (2) | 2009.09.01 |
| 멘토바이러스 정식버전 발표 (0) | 2009.08.24 |
| Irmon.dll 파일 오진에 대한 처리 안내 (2) | 2009.08.21 |
| MSN 메신저로 전파되는 피싱사이트 - 나의 로그인이 필요하다? (2) | 2009.08.21 |
댓글