Beware malicious festive tweets
SECURITY| Dec. 7, 2010, 10:45 a.m.
Global IT vendor Panda Security warns that cyber-criminals are exploiting Twitter to spread malware in festive-themed messages.
Using methods akin to Black Hat SEO techniques, hackers are taking advantage of trending topics to position malware distribution campaigns.
Topics such as “
or even “
, are among the most popular subjects used by hackers to entice users.
Panda says thousands of tweets have been launched using festive-themed phrases, such as “ Nobody cares about Hanukkah” or “ Shocking video of the Grinch” , along with short URLs pointing to malicious websites.
Users who click the link will be taken to a page that infects systems with false codecs by exploiting a security hole in PDF files and tries to trick users into downloading a codec that is really a downloader Trojan, which in turn downloads more malware onto the compromised computer.
In addition to subjects related to Christmas, cyber-criminals are using other hot topics to spread their creations, including the Sundance festival, the AIDS campaign and the Carling Cup.
According to Jeremy Matthews, head of Panda’ s sub-Saharan operations, “ Social networks like Facebook and Twitter are becoming increasingly popular with hackers because of their ever-increasing number of users, and the ease at which they (the hackers) can post malicious links. That’ s why the number of clicks, and therefore infections, tends to be very high.”
Keep your computer safe this Christmas
With the increased risk over the Christmas period, Panda offers users a series of practical security tips for using social media:
1) Don't click suspicious links from non-trusted sources. This should apply to messages received through Twitter, through other social networks and even via email.
2) If you click on the links, check the target page. If you don't recognize it, close your browser.
3) Even if you don't see anything strange in the target page, but you are asked to download something, don't accept.
4) If you do download or install an executable file and the PC starts to launch messages or behaves strangely, there is probably malware on your computer. In this case, you should check your computer with a free online scanner such as ActiveScan, available at: www.activescan.com
5) As a general rule, make sure your computer is well protected to ensure that you are not exposed to the risk of infection from any malicious code. You can protect yourself with the new, free Panda Cloud Antivirus solution (www.cloudantivirus.com).
“ It is important to remember that hackers will take advantage of any big holiday or event, which is why it is important to remain extra vigilant during these times” , concludes Matthews.
For more information about Panda, visit http://www.pandasecurity.com/
MORE SECURITY NEWS
RSA research reveals blind spots in threat detectionRSA, The Security Division of EMC, has released the results of a new Threat Detection Effectiveness Survey. Read More
Banking security in Africa reaching a tipping pointEntersekt CEO Schalk Nolte looks at the growing security risks for banks and financial institutions in Africa and explains why complacency is no longer an option. Read More
Nigeria loses N127bn to cyber thievesBetween 2013 and 2014, the activities of criminals who chose the cyber space as their platform of operation has cost Nigeria a whopping N127billion. Read More
Staying one step ahead of information security threatsThe need to continually adapt to an increasingly hostile environment has resulted in a significant change from the familiar security measures that kept us “comfortable” a mere five years ago. Read More
ESET warns of new Facebook threatESET has warned of malicious links being sent to Facebook users under the title: “My video”, “My first video”, or “Private video”. Read More
What you need to know about WhatsApp’s end-to-end encryptionUsers of the instant messaging service WhatsApp will now benefit from more secure conversations after the company announced it has turned on full end-to-end encryption. Read More
Arbor Networks’ on-premise DDoS solution wins gold for best security hardwareArbor Networks Inc., the security division of NETSCOUT (NASDAQ: NTCT), has announced that Info Security Products Guide, the industry’s leading information security research and advisory guide, has named Arbor Networks as the winner of four of its Global Excellence Awards. Read More
Students unveil fingerprint car starting moduleIt is often said that necessity is the mother of inventions and this may be deemed true with finger print motor starter, a new innovation from Uganda developed by software engineering students of Makerere University. Read More
Remember governance in the rush to next generation platformsEnterprises are actively looking to next generation application and analytics platforms, but they need to be aware that the platforms alone cannot assure quality data and effective data governance, warns KID. Read More
Forgot password? Behaviour metrics authentication in mobile devicesRSA, The Security Division of EMC, says the future is truly about choice and providing secure authentication that makes it easy for users to comply with security policies. Read More
FEATURED STORYCriticism over Remita borne out of ignorance, says SystemSpecs
The CEO of SystemSpecs, the company behind the revenue-saving Nigerian Single Treasury Account (TSA) system, speaks to Biztechafrica.
BEST READ NEWS
IN DEPTHIBM Opens First Cloud Data Centre in South Africa
IBM is opening a new IBM Cloud Data Centre in Johannesburg, South Africa. The new cloud center is the result of a close collaboration with Gijima and Vodacom and is designed to support cloud adoption and customer demand across the continent.
COMPANY NEWSKeeping up with the mobile banking evolution
Africa especially has witnessed the trend of mobile banking, due to the well-known fact that today more people on the continent have access to a mobile phone ...