The internet security firm Kaperksy yesterday reported that Twitter has been used to dupe followers into installing a malicious trojan horse on a visitors computer. The profile was in Portugese and according to Kaperksy, has all the footprints of Brazilian hackers ranging from the Portuguese, to the web servers hosting the banking malware to the email embedded in the malware which is used for receiving data from infected machines.
The Twitter account had a link to a video. Kapersky noted that :
If you click on the link, you get a window that shows the progress of an automatic download of a so-called new version of Adobe Flash which is supposedly required to watch the video. You end up with a file labeled Adobe Flash (it’s a fake) on your machine; a technique that is currently very popular.
In reality, this is a Trojan downloader that proceeds to download 10 banker Trojans onto the infected machine, all of which are disguised as MP3 files. We first detected the downloader proactively as Heur.Downloader and then added a signature to detect it also as Trojan-Downloader.Win32.Banload.sco.
Source Link : Social engineering on Twitter
Leave a Reply