Information on Twitter Threat

Following on from last month’s phishing attacks on Twitter via the mass distribution of spam messages, Symantec Security Response has now detected a wave of fake Twitter invitations that come carrying a mass-mailing and malicious worm.

The observed messages appear as if they have been sent from a Twitter account; however, unlike a legitimate Twitter message, there is no invitation URL present in the body. Instead the user will see an attachment that appears as a .zip file that purportedly contains an invitation card. The malicious attachment carries a mass-mailing work that gathers email addresses from the compromised computer and spreads by copying itself to removable drives and shared folders.

twitter

And here is a sample header:

From: [email protected]
Subject: Your friend invited you to twitter!

In May 2009, Symantec observed that overall spam levels climbed to nearly 90 percent of all email, consistent with levels ob-served in May 2008. As Twitter continues to gain popularity among social networking users, people are regularly receiving invitations and email updates from fellow users. Symantec expects that spammers will continue to use Twitter and other popular social networks as bait in their attacks.

For more technology news and gadget reviews, follow us on Facebook, Twitter and Instagram
  • Bo

    This is one obsolete piece of junk! And you call this a tech blog?

  • Martha

    Just to correct Bo, there’s nothing obsolete about this info on the new Twitter threat. This particular Twitter threat was detected by Symantec this month and the threat alert immediately went up on June 18th. If you check across the web, you will find that alert on this threat went up on June 18th, PTB’s post isn’t outdated maybe you read the alert too late.

  • Em

    Just to correct Bo, there’s nothing obsolete about this info on the new Twitter threat. This particular Twitter threat was detected by Symantec this month and the threat alert immediately went up on June 18th. If you check across the web, you will find that alert on this threat went up on June 18th, PTB’s post isn’t outdated maybe you read the alert too late. Cheers! 🙂

  • reply

    I agree with bo. so late. I mean what the heck is this tech blog? not updated? ok. bye.