iEntry 10th Anniversary RSS Archive

IT Management Begins With Security
SecurityProNews > News > Security News > BuddyProfile Sending AIM Users To Malware
Search:
[ news_security_news ]

BuddyProfile Sending AIM Users To Malware



David Utter
Staff Writer
2006-11-30

SecurityProNews: Insider Reports Insider Reports RSS Feed


A site that allows visitors to embed content in their AIM buddy profiles is being exploited by malware and adware distributors who create profiles laden with links to unwanted content.

Adult and other undesired content have been the choice of malicious parties who are trying to capitalize on a younger audience and gain access to their systems. Getting in front of a tech-savvy but less security-conscious audience has led to various enticements, the latest of which targets AIM users.

McAfee researcher Alyssa Myers noted what her colleagues at SiteAdvisor had found at BuddyProfile.com:

A SiteAdvisor crawl today turned up some profiles on BuddyProfile.com which immediately redirect the user to an adult site, which points to a file which is detected as Exploit-ANIfile, which is being used to install Adware-PestTrap which then displays "security warnings" to the user.

Just to recap:

1) Popular site, frequented by a large number of kids

2) Allows users to add their own HTML content

3) HTML content is being used on profiles to redirect people browsing this site (presumably said kids) to porn and surreptitiously-installed adware programs

Yuck. Seriously.
Chris "Paperghost" Boyd of Vitalsecurity.org told SecurityProNews this sort of abuse via sites like BuddyProfile is not uncommon:

Any site that lets the users dictate the content could launch attacks like the ones mentioned. For example, we recently saw people phishing for login details using the Myspace domain itself - rather than direct users to a fake login page hosted elsewhere, they'll create a fake profile, overlay it with something that requires you to login to the page and steal your Myspace details. The end user likely wouldn't have a clue that they had been scammed, and exploiting social networking sites in this way will continue to be a growing problem for the foreseeable future.
An AOL spokesperson said neither AOL nor AIM endorse BuddyProfile, and cautioned AIM users on avoiding clicking links in unfamiliar profiles. BuddyProfile had not replied to a request for comment by press time.

---
Tag:

Add to Del.icio.us | Digg | Reddit | Furl

Get all the SecurityProNews updates:




About the Author:
David Utter is a business and technology writer for SecurityProNews and WebProNews.

More news_security_news Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - 1998-2009 All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds