RSS Alerts

Related Links

  • Mashable
  • Elsevier Ltd is not responsible for the content of external websites.

Related Stories

  • ‘Iranian Cyber Army’ hacks Twitter
    A hacker group called ‘Iranian Cyber Army’ hacked Twitter for an hour early on 18 December, redirecting users to a website containing a green flag and Arabic writing.
  • Twitter and Facebook – a gift to criminals
    Posting your address and then updates about when you are going on holiday onto social networking sites such as Twitter and Facebook is a gift to potential burglars, and a headache for insurers.
  • Twitter, Facebook still suffering from internet packet delays
    The hacker attack on Twitter on Thursday afternoon UK time - which appears to have also spilled over to the Facebook social networking site - is now thought to have been the work of political activists who wanted to stop a pro-Georgian blogger - Cyxymu - from making his/her postings on the sites.
  • Automated Twitter postings pose a severe security risk
    Twitter has again hit the IT security headlines, this time over the increasing widespread practice of automated retweets - automated repostings - by users of the social networking site/service.
  • Twitter worm steals user details
    A worm on Twitter is tricking users into giving up their user details at the same time as redirecting victims to a dating website where the aggregate number of views result in affiliate revenue.

News

New Twitter worm promises more contacts, but hijacks account

31 December 2009

Reports are coming in about a new worm - provisionally called GetFree - that offers users of the Twitter social networking site a sizeable increase in their online contacts.

Unfortunately, when Twitter users click on the shortened URL, the resultant website asks for their user name and password and does little else.

According to Adam Ostrow, a security researcher with the Mashable web portal, the worm is spreading rapidly via Twitter.

"Unfortunately, the only thing that the sites involved seem to do is use your account to spam your followers", he said in a blog posting.

Ostrow said that the `@GetFree' account used by one of the worm variants has been suspended by Twitter, although the number of variations on the worm appears to be increasing.

"Another that I came across may be far more damaging, as it appears to be spreading malware through what look to be YouTube videos, but actually functions like the Koobface worm", he said.

Twitter appears to be aware of the problem and is reported to be actively locking down accounts using the worm scam.

Ostrow said, however, that he and his team are "still digging to get to the bottom of this scam, but with `Twitter Followers' hitting trending topics, it's clear many people are falling for something today".

"We'll update when we know more - in the meantime, be sure to keep your credentials safe and be dubious of video links", he added.

 

This article is featured in:
Internet and Network Security Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water