MySpace hit by video-carried malware

Embedded video takes on a life of its own when played


5 December 2006 14:00 GMT / By Amber Maitland

MySpace.com pages have fallen foul of another piece of malware, according to web security firm Websense.

A hacker has posted a video on MySpace that apparently changes people's profiles as it's being played in order to launch a phishing attack.

The QuickTime file exploits a vulnerability in MySpace and one in JavaScript within the QuickTime application.

Once played, the video embeds itself into the victim's MySpace page, and rigs all the links from the page to phishing websites in order to get people to enter their MySpace login details. Websense warns that if a page is infected with the video virus, it will most likely have a blue navigation bar, and link to fraudulent websites.

Victims are reporting that the malicious code runs whether being viewed by Internet Explorer or Firefox.
Related
Full tags
Software, Online, Viruses And Malware, MySpace, Social networking

share print story pdf email story

Recommended articles

Recommended articles from around the web
Loading

Best iPad 2 apps

We detail the best iPad 2 and iPad apps in the app store Which iPad app should you download?

Best new iPad apps

We detail the best iPad apps in the app store for your new Retina Display Which iPad app should you download?

Windows 8

First Look: Windows 8 Consumer Preview reviewed

The new iPad

The new iPad: Everything you need to know

Pocket-lint poll

Q. Does the Samsung Galaxy S III deliver what you hoped for?

Vote YES Vote NO

» LAST TIME
When asked Would you switch from iOS to Android? 54% said yes and 46% said no