Twitter blocking links to known malware sites
Tuesday, August 4, 2009
In response to a recent rise in spam, malware and worms threatening the online security of its users, micro-blogging site Twitter has begun blocking links to known malware sites.
Web security firm F-Secure first reported the malware link blocking on its blog yesterday. After attempting to post a link to a website that hosts malware, a message appears that says: "Oops! Your tweet contained a URL to a known malware site!"
Security experts have been warning for some time that the use of URL shortening on the site presents a security risk, because the shortened URLs don't reveal what domain or website a user will be sent to upon clicking.
Last month, hackers managed to hijack some 2.2 million links posted through the URL shortening service Cligs, redirecting the links to a non-malicious page on freedomblogging.com, a website of the OC Register.
Trend Micro reported that hackers have used TinyURL - the largest of the URL shortening services - to direct users via instant messages on Facebook, Google Chat and AOL Instant Messenger to a phishing website.
Spammers have increasingly used shortened URLs in spam email and instant messages.
Related News:
Conficker still a threat to web security - 3.18.2010
The Conficker worm was by far the most notorious piece of malware in 2009 for several reasons. Not only did it receive media attention and infect more computers than any other strain, according to Katonda, a business technology website, it reminded web security professionals of bygone days when major epidemics were the norm.
Network security update not responsible for crashes - 2.24.2010
Reports of the so-called "blue screen of death" following the installation of the latest Microsoft security update are the result of malware, not a defect in the update.
Botnets and Chuck Norris take aim at network security - 2.22.2010
Last week, word spread of the Kneber botnet compromising more than 2,000 computers worldwide. With the start of a new week comes more malware attacks plaguing the web community. The so-called "Chuck Norris" botnet is attacking routers and DSL modems by guessing commonly used passwords.
Web security company warns of scareware's risk - 2.19.2010
The rise in scareware attacks and cyber criminal behavior in general forced DynaSis, an IT services company, to issue a warning to its users about the threat of fake anti-virus software infecting their computers on Friday.
Age-old trick with brand-new target - 1.18.2010
Cyber criminals have turned to a scam from the early days of the internet to target the growing smartphone market: Trojan phone dialers.
|
