On July 31, an article was posted on ZDNet.com about some worms on the web, squirming there way through Facebook and MySpace. The actual method of attack seems to be through,… [long pause] … Social Enginering (which means, you’re curiosity get’s the best of you and someone tricks you into thinking you’re doing one thing, when you’re actually doing another).
Some of the messages and comments posted to the social network sites include:- Paris Hilton Tosses Dwarf On The Street
- Examiners Caught Downloading Grades From The Internet
- Hello; You must see it!!! LOL. My friend catched you on hidden cam
- Is it really celebrity? Funny Moments and many others.The messages and comments include links to a fake YouTube-like site. Clicking on the link redirects the targer to another YouTube clone fitted with a note to download the latest version of Adobe’s Flash Player.
However, instead of the latest version of Flash Player, a file called codesetup.exe is downloaded to the victim machine; this file is also a network worm. Kaspersky said [from Kaspershy Lab's]its security suite detected the threats proactively and signatures were added to the database on July 31, 2008.
In short – don’t download anything unless you read the file name and know exactly what it does.
Original article can be found here
Tim Schoffelman of SilentGap
