10 Nov 2009
The notorious Koobface malware has started using Google's Reader service to spread further.
Researchers say that the new attack uses spammed messages that send users to the compromised pages on the Reader service. When the user clicks on a fake video embedded in the page, traffic is diverted to another site that attempts to run a remote exploit and malware installation.
Trend Micro senior security adviser Rik Ferguson noted that the attacks provided a slight variation on the Koobface attacks that surfaced earlier this year. The company estimates that some 1,300 accounts have already been compromised.
"Cybercriminals are taking advantage of Google's credibility by hiding their malicious links behind Google Reader," said Ferguson.
"This is a new twist on the familiar Koobface infection routine, where victims are asked to install Adobe Flash updates in order to view a video that appears to be shared on the Google Reader website."
The Koobface worm and its associated botnet have gained notoriety in security circles for its longevity and history of targeting social networking sites. First surfacing in 2008 within MySpace and Facebook, the worm later resurfaced in 2009, this time targeting Twitter users.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Preview of the forthcoming handheld projectors with DLP technology
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Mobile Hardware Support: Android platform (French speaking...
C# .NET GUI Designer / Developer Assignment of a...
Multimedia Developer: Web, Digital, Graphics Assignment...
Digital Designer: Web, Multimedia, Graphics Assignment...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?