Twitter iPhone App Worm TargetsiTweeters
Success breeds contempt -- or at least con attempts, as a new worm aimed at stealing financial info from iPhone Twitter app users shows.
Success breeds contempt -- or at least con attempts, as a new worm aimed at stealing financial info from iPhone Twitter app users shows.The new Twitter worm hides in hot-topic tweets. Those hot topics -- promises of hilarious videos, for example -- are fertile ground for quick, ill-considered clicks on links, at which point the worm sets to work.
This one, described on a PandaLabs blog dumps malware that steals financial info, PIN numbers and passwords.
The campaign is evidently being run from new Twitter accounts, rather than than from the thousands of hacked legit Twitter accounts for sale on the black market.
The keylogger drops in via a Java file drive-by, leading security firm F-secure to ask if "you really need Java in your browser."
Disabling Java is a good first step, but even so, the best first step remains to stop and think before you click on a link in a tweet of an e-mail.
Then don't click on it.
About the Author(s)
You May Also Like
Beyond Spam Filters and Firewalls: Preventing Business Email Compromises in the Modern Enterprise
April 30, 2024Key Findings from the State of AppSec Report 2024
May 7, 2024Is AI Identifying Threats to Your Network?
May 14, 2024Where and Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy
May 15, 2024Safeguarding Political Campaigns: Defending Against Mass Phishing Attacks
May 16, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024