Most Popular
| Top Stories | Commented | Featured |
Weekend Open Forum: Have you upgraded to Windows 7 yet? What is there to like/not? featured
Tech Tip of The Week: Turn Off your Display Using a Windows Shortcut and More featured
Netflix PS3 streaming arrives tomorrow
Dell's ultra-thin Adamo XPS to ship soon for $1,799
Windows 7 crushed Vista in early launch sales
AMD and PC vendors delay products amid GPU shortage
TS Community
| Recent Discussion | User Gallery |
Information Technology
Storm worm shifts path to fake YouTube links
In yet another twist to the Storm worm nuisance, spammers are using fake YouTube links to trick users into downloading malicious code which could turn their PCs into bots. Using typical social engineering techniques, hackers are flooding inboxes with e-mails around the world stating: “You can see your face right in the video. It’s all over the web dude. This is the link to it.”
The malicious website attempts to install what is known as the Q4Rollup package, which is an encrypted collection of about a dozen exploits including keyloggers, spyware and rootkits. But according to security firm Exploit Prevention Labs, users whose PC’s security patches are up to date as of April, are safe. Alternatively, visitors are encouraged to download and launch software to view the made-up video, which, as you may guess, will trigger the attack manually.
Spammers have customized their tactics to deliver the worm in different ways. It was first reported in January, delivered via an executable e-mail attachment disguised as an e-greeting card. In recent months, however, spammers have changed their approach by attempting to trick users into clicking on links directing them to malware-infected sites.
The malicious website attempts to install what is known as the Q4Rollup package, which is an encrypted collection of about a dozen exploits including keyloggers, spyware and rootkits. But according to security firm Exploit Prevention Labs, users whose PC’s security patches are up to date as of April, are safe. Alternatively, visitors are encouraged to download and launch software to view the made-up video, which, as you may guess, will trigger the attack manually.
Spammers have customized their tactics to deliver the worm in different ways. It was first reported in January, delivered via an executable e-mail attachment disguised as an e-greeting card. In recent months, however, spammers have changed their approach by attempting to trick users into clicking on links directing them to malware-infected sites.
Related Stories
TechSpot RSS



