Thousands of Twitter users are believed to have been hit with malicious links tied to a rogue anti-virus scam that was circulating the micro-blog service. The company took action and eliminated the problem within hours.
The scam spread through malicious links by abusing the goo.gl URL shortening service. According to Kaspersky Lab, the malicious links redirect users to different domains with a ‘m28sx.html’ page. That HTML page redirects users to a static domain with a Ukrainian top-level domain. From there, blogged Kaspersky Lab senior malware researcher Nicolas Brulez, the user is redirected to an IP address pushing fake anti-virus.
Del Harvey, director of Trust and Safety for Twitter, tweeted during the day that the company was working to remove the malicious links and reset passwords on compromised accounts.
“What isn’t yet clear is how the Twitter users found their accounts compromised in this way,” blogged Graham Cluley, senior technology consultant at Sophos. “The natural suspicion would be that their usernames and passwords have been stolen. It certainly would be a sensible precaution for users who have found their Twitter accounts unexpectedly posting goo.gl links to change their passwords immediately.”
These kinds of attacks are hardly new to Twitter. In December, users were targeted with shortened links that redirected them to the compromised site of a French furniture company before passing them on to other domains. In that case, the malicious URLs pointed to a copy of the Neosploit attack toolkit.
Targetting AWS, Microsoft? British competition regulator soon to announce “behavioural” remedies for cloud sector
Move to Elon Musk rival. Former senior executive at X joins Sam Altman's venture formerly…
Bitcoin price rises towards $100,000, amid investor optimism of friendlier US regulatory landscape under Donald…
Judge Kaplan praises former FTX CTO Gary Wang for his co-operation against Sam Bankman-Fried during…
Explore the future of work with the Silicon In Focus Podcast. Discover how AI is…
Executive hits out at the DoJ's “staggering proposal” to force Google to sell off its…