I'm sorry, but I'm really stupid. I know a worm is a bad thing, but that's about it. Can you or someone else tell me what this particular worm can do, and what should be done about it, using very easy to understand terms?
I don't have a myspace account, but both of my kids do. I'd really hate to see their computers messed up by something preventable. Thanks!
This worm is exploiting the Javascript support within Apple's embedded QuickTime player. This is used in conjunction with a MySpace vulnerability that was announced two weeks ago on the Full-Disclosure mailing list.
Translation:
This is a virus that attacks MySpace user profiles, using an exploit of the QuickTime player.
The vulnerabilities are being used to replace the legitimate links on the user's MySpace profile with links to a phishing site.
Translation:
The links in the user's MySpace profile then get changed to links for phishing sites.
So, people clicking on the links will be scammed.
Once a user's MySpace profile is infected (by viewing a malicious embedded QuickTime video), that profile is modified in two ways. The links in the user's page are replaced with links to a phishing site, and a copy of the malicious QuickTime video is embedded into the user's site. Any other users who visit this newly-infected profile may have their own profile infected as well.
Translation:
The MySpace profile will also be used to host a copy of the infecting video,
so others can be infected as well.
==========
What to do?
I don't think this affects computers THEMSELVES-just the MySpace network.
Until MySpace fixes it, though, the smartest thing will be to stay off MySpace,
or, failing that, to avoid clicking ANY links on MySpace no matter what.
In general, I'd keep my antivirus up-to-date as well, just in case something
(probably not this) can try to infect your computer.
Recommended Posts
VeganXTC
I'm sorry, but I'm really stupid. I know a worm is a bad thing, but that's about it. Can you or someone else tell me what this particular worm can do, and what should be done about it, using very easy to understand terms?
I don't have a myspace account, but both of my kids do. I'd really hate to see their computers messed up by something preventable. Thanks!
Link to comment
Share on other sites
WordWolf
This is a virus that attacks MySpace user profiles, using an exploit of the QuickTime player.
Translation:
The links in the user's MySpace profile then get changed to links for phishing sites.
So, people clicking on the links will be scammed.
Translation:
The MySpace profile will also be used to host a copy of the infecting video,
so others can be infected as well.
==========
What to do?
I don't think this affects computers THEMSELVES-just the MySpace network.
Until MySpace fixes it, though, the smartest thing will be to stay off MySpace,
or, failing that, to avoid clicking ANY links on MySpace no matter what.
In general, I'd keep my antivirus up-to-date as well, just in case something
(probably not this) can try to infect your computer.
Link to comment
Share on other sites
VeganXTC
Thank you so much WW! I'll be sure to let my kids know about this.
Link to comment
Share on other sites
Belle
ROFLMAO!!
Mark, I thought you were telling us about a new pet.... you know, something superior to the Amazing Sea Monkeys.
Link to comment
Share on other sites
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.