Twitter users hit by Chatwebcamfree attack
Posted on 09 March 2009.
Twitter users should to be vigilant as approximately 750 accounts on the popular micro-blogging site have been hit by yet another hack attack. Experts at SophosLabs found that inappropriate messages were being sent from compromised accounts in an effort to drive traffic to a pornographic website, Chatwebcamfree.

The messages, which are being spammed out as Tweets, resemble the following:

followed by a link to the Chatwebcamfree website.

However, the index page of this website serves up obfuscated JavaScript that loads a variety of pornographic adverts and contains a web form directed to a site called eroticgateway.com.

Twitter has confirmed that it has now reset the passwords of all compromised accounts which should cease the tidal wave of spam messages for the time being.

Mystery currently surrounds how the criminals compromised the Twitter accounts. Sophos recommends that all affected users should scan their computers with an up-to-date anti-virus product, and think carefully about their password security.

Graham Cluley, senior technology consultant at Sophos said:
If a hacker has managed to ascertain your Twitter password then there is a chance that they may have also compromised your system in other ways too. We're seeing more and more attacks from spammers, phishers, malware authors, scammers and identity thieves against users of social networking sites like Twitter and Facebook - similar adult webcam messages were spotted on Facebook just last month. These aren't just proof-of-concept attacks in controlled conditions - they're everyday full-blooded assaults making money out of real people.





Spotlight

DMARC: The time is right for email authentication

Posted on 23 January 2015.  |  The DMARC specification has emerged in the last couple years to pull together all the threads of email authentication technology under one roof—to standardize the method in which email is authenticated, and the manner in which reporting and policy enforcement is implemented.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Mon, Jan 26th
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //