Written by Zealus on December 18, 2007 – 2:04 am -
There is a post on Mashable that outlines how to game Twitter into becoming a natural environment to spread malware. There is little to none incentive to create pure spam feeds, as they will, undoubtedly, be closed and all future links will be marked with “nofollow” attribute. Malware, however, is whole another story. In this case the attacker doesn’t have to have clean direct links. In fact, as it is mentioned in original article, attacker, actually, have to mask destination with some sort of shortener (worse yet, if the link looks like “legit” affiliate link). By gathering large enough audience, an attacker can get to them in a single strike. And if the destination look innocent enough, he might get away with it just long enough. After all -it all is still same old social engineering.
Educated guess says that Jaiku might be vulnerable the same way. Just look what happened to the Blogger.com (aka Blogspot) - it became free doorway hosting service right at the beginning…
Feel free to share the content:
Tags:
fraud,
spam,
twitter
You might also be interested in reading this:
Twitter, twitter, little star… (August 21, 2007): Last week I have discovered a new and innovative way people will produce doorways for their black hat SEO techniques. It's called Twitter and it's some sort of a guestbook, where posting is available via number of widgets, including direct post from IM. Create a bunch of twitter pages (the only manual part of the [...]
Why Trusted Platform Module won’t protect you (December 14, 2007): Recently I was asked a very good question on Trusted Platform Module. Question stated that once the hard drive is removed from the system, there is nothing that prevents attacker to break decryption (even brute force it) and obtain data no matter how secure it is.
Pretty much all the protection applied in [...]
Web hosting requests (October 20, 2004): What makes people to post requests like these?
Platform: Linux
Space: 1000 MB
Bandwidth: 30GB
Control Panel: yes
IP Address: no
Email Accounts: unlimited
Database(s): unlimited
Expected cost: 1 per year
Right, like someone is really going to give them free hosting like this. The forum seems pretty empty. I mean if the forum would have been up to the resources, then sure, it [...]
Survey and article (November 3, 2004): Having thought it all through, I think the subject of online credit card fraud deserves the specially written article. But before jumping the water, I think it would be worth to at least try to gather as much information as possible. So I set up a small survey, which I ask anyone who reads this [...]
Tags:
fraud,
spam,
twitterPosted in
annoyances |
