back to article Fake Twitter profile punts Orkut attack

Miscreants are using a fake Twitter profile in a bid to spread malware that harvests login credentials for Orkut. Updates to the fake Twitter profile are supposedly being followed by 17 punters, but they're all fake, according to Chris Boyd, director of malware research at IM security firm Facetime. Twittery Trojan The …

COMMENTS

This topic is closed for new posts.
  1. Piers
    Happy

    Tainted tweets target twits

    +1 bestest byline ever

  2. John
    Go

    famous!

    Woo! This just in from McAfee

    Notice

    This is a Low-Profiled Threat Notice for PWS-Banker

    Justification

    PWS-Banker has been deemed Low-Profiled due to media attention at http://www.theregister.co.uk/2008/09/09/twitter_orkut_attack/.

    PWS-Banker is referred to as the "OrkutTron Trojan" in article at theregister.co.uk.

    Read About It

    Information about PWS-Banker is located on VIL at: http://vil.nai.com/vil/content/v_124984.htm

    Detection

    PWS-Banker was first discovered on June 6, 2004 and detection, for this particular variant, was added to the 5156 dat files (Release Date: November 5, 2007).

    If you suspect you have PWS-Banker, please submit a sample to http://www.webimmune.net

    Risk Assessment Definition

    For further information on the Risk Assessment and Avert Labs Recommended Actions please see: <http://www.mcafee.com/us/threat_center/outbreaks/virus_library/risk_assessment.html>

    For breaking security information from McAfee® Avert® Labs visit:

    McAfee Avert Labs Blog

    http://www.avertlabs.com/research/blog

    AudioParasitics - The Official PodCast of McAfee Avert Labs

    http://podcasts.mcafee.com/audioparasitics

    Sign up for McAfee® Avert® Labs Security Advisories

    http://www.mcafee.com/us/threat_center/securityadvisory/signup.aspx

  3. Anonymous Coward
    Anonymous Coward

    <no title>

    That's the problem with the current system. One is often told one needs to update some thing or other, and it is all too easy to assume the suggestion is legit :-( What is needed instead is a warning that your system isn't up to date and the URL of the official site to go for the update, if desired. At least that gives one a chance to spot dodgy looking URLs.

This topic is closed for new posts.

Biting the hand that feeds IT © 1998–2022