A complex, ongoing attack on MySpace.com users is turning victim’s sites and computers into hosts for serving phishing scams and computer viruses. Earlier this week, some MySpace user pages were seeded with computer code seeking to exploit one of three recently-patched security holes in Microsoft Windows and Internet Explorer. MySpace visitors who browse one of these pages are redirected to a fake MySpace login page aiming to steal the visitor’s MySpace user name and password. A screen shot of an infected MySpace profile. Clicking anywhere on the live version of this page will redirect the visitor to a fake login page and try to seed the visitor’s PC with malicious software. We’ve seen a similar attack against MySpace, but this new one has a twist. A scam victim’s MySpace page is altered to include code redirecting users to a phishing page. Meanwhile, if the user’s computer does not have [...]
Search
Recent Posts
- McDonalds survey scam is super-size fraud
- London hospitals back online after PC virus infection
- Rootkit unearthed in network security software
- WordPress update kyboshes XSS flaw
- Srizbi spam botnet in failed resurrection
- Srizbi Botnet Re-Emerges Despite Security Firm’s Efforts
- Monster spam botnet briefly resurrected from the dead
Categories
Monthly Archives
- December 2008 (2)
- November 2008 (61)
- October 2008 (54)
- September 2008 (40)
- August 2008 (66)
- July 2008 (60)
- June 2008 (51)
- May 2008 (57)
- April 2008 (82)
- March 2008 (60)
- February 2008 (46)
- January 2008 (41)
- December 2007 (20)
- November 2007 (37)
- October 2007 (36)
- September 2007 (27)
- August 2007 (39)
- July 2007 (34)
- June 2007 (77)
- May 2007 (142)
- April 2007 (722)
- March 2007 (2124)
- February 2007 (612)