YouTube Dragged Into Spam Runs Again!
The most popular name in online video sharing, YouTube, is again being used by phishers. Spammed e-mail messages contain an obscure thumbnail of what looks like intertwining limbs, with the video description, 'A touching tale of how two lovers found their heart'. Trend Micro, a secure content and threat management company, has detected YouTube Spoof Site Serving Malware and advised users to be wary of such spam messages.
Should users fall for the social engineering technique and click the links within the spam, a page informs them that a new Flash player is needed first for users to be able to view the said video. Users are then redirected to the URL http://www5.youtube.com.site{BLOCKED}.be4koy.com.es/watch/v/install_flash_player.exe, where the file install_flash_player.exe is then offered for download.
Trend Micro detects the said file as TROJ_DROPPER.KAP. The file is installed as aspimgr.exe. Upon installation, it immediately starts to send out new e-mail messages containing similar information as above.
This is not the first time YouTube's name has been dragged into spam runs that lead to phishing sites. The Trend Micro content security team spotted the following message: Clicking on the YouTube logo leads the user to a YouTube login page. When a user logs on to his/her YouTube account or creates a new account, the user is led to the following Web page.
Reproduced from an article published by EFYtimes
© EFYtimes
The original article can be viewed here:
http://www.efytimes.com/efytimes/22801/news.htm
Permalink Bookmark Digg this story
