Sign in to follow this  

Twitter scareware wave

Recommended Posts


<h1>Twitter scareware wave

Yesterday (Thursday), an apparently large number of links leading to scareware sites were spread via Twitter. The page links were disguised using short URLs from and advertised as "Cool", "Very Nice" or "Google's search page has done it again" in varying tweets by different users.

Clicking on the link transferred users to a web site that pretended to find numerous viruses after performing a bogus scan on a Windows PC. According to the Internet Storm Center (ISC), one of the files offered to solve the alleged problem contained the SecurityShieldFraud scareware. Once installed, the malware contacted other servers; no further functional details have so far become available. It remains unknown how many Windows users have fallen victim to the attack.

Whether the attackers used hacked accounts or stolen access data to send out the links via Twitter, or exploited existing Twitter accounts on infected PCs, is yet unclear. All scareware sites discovered in connection with this attack have now been shut down.

Share this post

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Sign in to follow this