- Twitter is suspending the accounts of some users whose computers have fallen victim to a well-known piece of malicious software that has targeted other sites such as Facebook and MySpace. The malware, Koobface, is designed to spread itself by checking to see if person is logged into a social network. It will then post fraudulent messages on the person’s Twitter account trying to entice friends to click the link, which then leads to a malicious Web site that tries to infect the PC.
- Koobface is sending out more bad links this time around. The use of URL shortening services on Twitter have made it difficult for people to tell what Web site they’ll end up at, Ferguson said. However, Twitter tools such as TweetDeck will show the full URL, which can help make people make a better security judgement, he said. Some of Koobface’s bad links have advertised, for example, videos of Michael Jackson, where the malware writers are trying to pique people’s interest in current news events, said Graham Cluley, senior technology consultant for Sophos. If a person followed the link, it would lead to a Web site asking the user to download an upgrade for their Flash multimedia players but is actually Koobface.
- Fix and Best Practice:
- Rest your password…even if you don’t think you’ve been infected
- Do not install or update plug-ins at random sites.
- Use better security judgment by first identifying where the link will take you.