Register

The Most Active and Friendliest
Affiliate Marketing Community Online!

Register
“ActiveRevenue”/  “CPA

Twitter goo.gl worm running rampant

D

djbaxter

Guest
Twitter worm hits goo.gl, redirects to fake anti-virus
By Ryan Naraine, ZD Net
January 20, 2011

A fast-moving Twitter worm is in circulation, using Google?s goo.gl redirection service to push unsuspecting users to a notorious scareware (fake anti-virus) malware campaign.

At 8:45 a.m EST today, this Twitter search shows thousands of Twitter messages continuing to spread the worm.

According to malware hunters tracking the threat, the worm?s redirection chain pushes users to a Web page serving up the ?Security Shield? Rogue AV. The page is using obfuscation techniques that include an implementation of RSA cryptography in JavaScript to obfuscate the page code.

Kaspersky Lab malware researcher Nicolas Brulez (see important disclosure) said the original ?goo.gl? links in the Twitter messages are redirecting users to different domains with a ?m28sx.html? page. That page then redirects to a static domain with a Ukrainian top level address.
Click to expand...

Read more...
 

Similar threads

R
Anyone running HEALTH INSURANCE offers?
Replies
8
Views
3K
Graybeard
Graybeard
HilltopAds
Running the AliExpress offer at HilltopAds: ROI 69,17%
Replies
1
Views
1K
T J Tutor
T J Tutor
HilltopAds
  • Poll
Running Ads during Popular Sports Events
Replies
4
Views
2K
HilltopAds
HilltopAds
zeropark
Everything you need to know about running and scaling traffic arbitrage
Replies
4
Views
5K
Albertomax1
Albertomax1
caitlykdavis
Is there a free way to track followers growth over time on Twitter?
Replies
11
Views
3K
SarahBoyer
S
MI
Back