Login

Please login to Techworld.com

Forgot password?
Need your new account confirmation email resent?
Forgot email?

Not a member yet?

Register for a Techworld Account and enjoy unlimited access to our extensive white paper library and exclusive Enterprise multi-user software trials. Account members can also comment on articles and access best practices guides.

Security

Top How-Tos / Advice articles

Twitter hit by worm-infected accounts

Tweet on that.

By Gregg Keizer, Computerworld (US) | Published: 08:24, 14 April 2009

Another worm attack early on Twitter has seen the micro-blogging web service chasing down infected accounts and deleting rogue tweets.

"Late Sunday night and into the wee hours of Monday we fought off a fourth attack," said Biz Stone, co-founder of Twitter, in an update to a blog post he originally published Sunday. "Once again, we secured the compromised accounts and deleted any material that would further propagate the worm."

The newest attack - which followed a pair of worms Saturday and a third Sunday - originated from a just-registered account labelled "cleaningUpMikey," said F-Secure's chief research officer, Mikko Hypponen.

Today's copycat worm infected account profiles of people who clicked on the sender's name or image in tweets like, "How TO remove new Mikeyy worm! RT!! http://bit.ly/yCL1S."

"A message like this is particularly nasty, as there were plenty of re-tweets of this malicious message sent by genuine users," Hypponen said in a blog posting just minutes after Monday's attack began. "The bit.ly link got redirected back to Twitter, to user reberbrerber's profile & which would infect Twitter users who viewed it."

Twitter has since deleted the cleaningUpMikey account and the tweets it and other infected accounts spawned.

Also on Monday, Twitter again emphasised that while the worm attacks have been a nuisance, they haven't stolen any user account information."No passwords, phone numbers, or other sensitive information were compromised as part of this renewed attack," the service's status page said early this morning.

Twitter has not responded to questions posed about the attacks, specifically whether it had, or would, contact law enforcement officials. According to some reports, and his own website, teenager Michael "Mikeyy" Mooney took responsibility for the worms that circulated on Twitter over the weekend.

In his updated blog today, Stone hinted that the company would take legal action against the worms' creators. "The worm introduced to Twitter this weekend was similar to the famous Samy worm, which spread across the popular MySpace social-networking site a while back," Stone wrote. "At that time, MySpace filed a lawsuit against the virus creator, which resulted in a felony charge and sentencing. Twitter takes security very seriously and we will be following up on all fronts."

In 2005, Samy Kamkar exploited a bug in MySpace to add as a "friend" anyone who viewed his account profile, then copied a snippet of JavaScript to that user's profile to continue the hack. Within 24 hours, he had accumulated over a million friends.

MySpace sued, and in January 2007, Kamkar pleaded guilty to a single felony count. He was sentenced to three years probation and 90 days community service.

Send to a friend

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.