Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

Short URL Exploitation Continues To Plague Twitter

Symantec : 06 December, 2010  (Technical Article)
Symantec warns businesses to educate users of the Twitter social networking framework on the potential danger of clicking on short URLs which can contain links to malware-loaded sites
Twitter has become an up-to-date news source for millions of people due to the speed with which news spreads through the network. While individual users dominate the service, businesses need to continuously educate their employees who use Twitter to ensure that the source is trustworthy and, on Twitter, determining this can prove difficult.

As with many social networking sites, Twitter is being targeted with malicious activity. Attackers select tweets that contain a popular topic and a shortened URL. The original URL is then replaced with a different shortened URL, pointing to a malicious website.

It is still very hard for users to spot the malicious links, as it is often a legitimate website that has been compromised and converted to host drive-by download attacks. Having your computer and software patched and having security software installed, could decrease the chances of falling victim to such drive-by download attacks.

Twitter has done some preliminary work to prevent the attacks. One tactic employed offer users the opportunity to "expand" the shortened links to show where the link leads without having to actually click the link. Work is still being done to ensure that all shortened URLs become expandable.

According to Symantec Hosted Services research, spam containing shortened URLs hit a one day peak of 18 percent (or 23.4 billion) of all spam emails in 2010, a significant increase from 9 percent the year before.
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo