Vulnerability Alerts
SANS
 
Microsoft
 
CERT/CC
 
 
 
Latest Comments
"I too have been a labor voter for many years and will not be voting for them again. The ..."
on Net filter legislation to go public by March
by maxt | Feb 9, 2010 7:56 PM
 
"I’ve just had a user receive a rehashed version of this with an attached html file containing a ..."
on ATO struck by new phishing scam
by Owen Lutz | Feb 9, 2010 6:01 PM
 
"hi"
on Chinese hacker school shut down
by manish kumar | Feb 9, 2010 4:27 PM
 
"Hey 'hey con-roy' ... from Google Australia's head of policy Iarla Flynn"We don't believe that ..."
on Conroy meets with Google for YouTube filtering
by Keep it real | Feb 9, 2010 3:33 PM
 
"@penno Off-site storage is a good solution unless you have some decent backup software to ..."
on Opinion: My holiday tip - backup your data now
by Charmgene | Feb 9, 2010 2:36 PM
Social Networking

Cybercriminals begin to use Twitter 'Mikeyy' worm to spread fake anti-virus

  • Email a Friend
  • Print Page
Related Articles
By Dan Raywood
Apr 16, 2009 11:15 AM
Tags: Twitter | Mikeyy | worm | fake | anti-virus | malware
The Mikeyy worm has allowed spammers to spread fake anti-virus products via malicious links.

Patrik Runald, chief security advisor at F-Secure, has discovered that as the ‘Mikeyy' worm hit the headlines over the weekend, spammers have taken advantage to use search engine optimisation techniques to spread malicious links.

Runald claimed that it was “no surprise at all that Google searches for information about the Twitter worm would lead to malware sites; it was really just a matter of time. Especially not after all the talk about it over the weekend and the guy behind it confessing everything. Malicious search results about popular news are something we see very often unfortunately.” 

 

F-Secure showed that a search for the ‘Twitter worm' on Google gave a malicious link in the top ten results, and clicking on the link will redirect to ‘videxxxxxs.cn' which immediately redirects you to 'loyxxxxxxno.com' which tricks you into downloading a fake video codec from ‘cxxxxxxxxaz.com'.

 

Runald claimed that the fake codec is malware, a Trojan downloader that downloads some additional malware, including a rogue security product called WinPC Defender, which shows fake malware detections.

 

He later posted an update that revealed searching for ‘Mikeyy' also leads to malicious results.

Runald said: “Like all rogue security products it will tell you that you have malware on your PC and that you have to buy the product to remove them. This is more expensive then usual though as they want you to pay US$69.99 when the usual rate seem to be US$39.95.”

See original article on scmagazineuk.com

Secure Computing Magazine

 
Ads by Google
Thoughts on this article? Add a comment below.
Be the first to comment on this article.

Report this comment as offensive:

   * Indicates information we require to process your submission.

Name: *
Email: *
Reason for offense: *
Your report will not be displayed.  
Name:
*
 
Email:
(will not be displayed)
*
 
Comment:
(HTML not permitted)
*
 
Validation
*

Enter the code you see below:

 

 
 
 
 
 
 
Vulnerabilities & Exploits Whitepapers
 
Popular Tags
2010 antivirus attack bill blogging botnet comedian cosby facebook fake malware mcafee networking scam search security social spam trojan twitter