Twitter

Twitter vanishes for an hour, but was it a bug or DDoS?

By

For the first time in nearly a year, Twitter suffered a prolonged outage Thursday, leaving its 140 million active monthly users without micro-blogging capabilities.

On fertile ground: Social networking

On fertile ground: Social networking

Sites such as Facebook and Twitter contain seemingly infinite amounts of personal data, so it's no wonder criminals have turned their focus there. But social media providers and end-users can protect themselves.

Social surety: NetSpend and Actiance

Social surety: NetSpend and Actiance

By

A web-based business embraced social media as a business enabler...after putting in place the right tool, reports Greg Masters.

Most businesses lack social media security controls

By

Just 32 percent of U.S. IT and IT security practitioners said their company has a policy that addresses the acceptable use of social media by employees in the workplace.

USA Today Twitter account hacked by The Script Kiddies

By

The Twitter account belonging to the USA Today was hacked over the weekend by a group called The Script Kiddies. In tweets posted from the compromised account, the hacktivist group bragged about past hacking feats, and urged users to "like" them on Facebook and vote on who they should infiltrate next. It is unclear how the hackers were able commandeer control of the account. The same group also claimed responsibility earlier this month for hacking the NBC News Twitter account and sending a series of erroneous tweets. In that case, a trojan permitted the takeover.

NBC Twitter hack attributed to 'Christmas tree' trojan

By

A group of hacktivists was able to compromise the NBC News Twitter account on Friday by tricking the network's social media head into clicking on a malicious attachment. According to an MSNBC report, a group known as The Script Kiddies commandeered control of the account to send a series of tweets falsely reporting an attack on Ground Zero in New York, two days before the 10th anniversary of 9/11. The mischief makers may have obtained the account's login information by duping Ryan Osborn, NBC News' director of social media, into clicking on an attachment, which installed a copy of the password-stealing "Christmas tree" trojan onto his machine. The erroneous tweets were removed soon after they were posted, and the FBI is looking into the matter. Twitter has since suspended the account of the The Script Kiddies, who also have hacked into the Facebook account of Pfizer.

Social media and political certainties

Blanket censorship of social media in the UK might be unlikely, but targeted blocking based on legal interception isn't out of the question.

Secret Service probing Fox Twitter hack

By

The U.S. Secret Service is investigating the compromise of the the Twitter account belonging to Fox News Politics, which was used to post a number of fake tweets reporting that President Obama had been assassinated, an agency spokesman told SCMagazineUS.com. A hacking group known as The Script Kiddies, an offshoot of Anonymous, has claimed responsibility for the attack, according to reports. The fraudulent tweets, delivered to some 38,000 followers of @foxnewspolitics during the early morning hours EST on Monday, have since been removed from the feed. It is unclear how the hackers got access to the account.

Osama bin Laden killing prompts malware, Facebook scams

By

The website belonging to a man in Pakistan who unknowingly live tweeted the raid on Osama bin Laden's compound was found to be infected with malware.

Twitter spam campaign linked to Gawker breach

By

A massive spam campaign that has rapidly spread on Twitter has been linked to a recent security breach of online media company Gawker Media.

Facebook, Twitter fail latest security assessment

By

A nonprofit security think tank's "report card" has failed Facebook and Twitter for neglecting to implement safeguards that are available on other popular online services.

Firefox add-on allows session hijacking of popular sites

By

A computer researcher has released a plug-in for the Firefox web browser that lets anyone scan open Wi-Fi networks and hijack, for example, Twitter and Facebook accounts.

Twitter hole patched

A flaw allowing JavaScript code to appear in tweets was plugged Wednesday morning by engineers at Twitter.com. The far-ranging cross-site scripting attack, which reportedly originated as a harmless, proof-of-concept attack by an Australian teenager, was estimated to affect more than 500,000 users of the social network site. The attacks exploited a common JavaScript feature, onmouseover, that allows programmers to create discrete actions when users move their mouse cursor over an area of a web page. The worm allowed attackers to infect a user's account, as well as those of their followers. - GM

Twitter fixes XSS flaw after being exploited

By

Cybercriminals this week took advantage of a cross-site scripting vulnerability on Twitter that since has been fixed, according to security researchers

Fake TweetDeck update on Twitter leads to trojan

By

Attackers took to Twitter on Monday to spread malware via links pointing to what they claimed was an update to the popular microblogging client TweetDeck.

Twitter attack spread Java exploit

By

Researchers at anti-virus firm F-Secure on Thursday discovered a new malware campaign on Twitter. A large number of fake accounts were tweeting messages containing a bit.ly shortened link that when clicked, attempted to use a Java exploit to install a combination keylogger and banking trojan. The tweets contained the text "haha this is the funniest video ive ever seen" along with popular hashtags and celebrity names. After discovering the campaign, F-secure researchers reported the shortened link to bit.ly staff, who promptly shut it down. The malicious site is still running, but users are no longer being redirected to it via Twitter. — AM

Twitter accounts compromised in torrent site scam

By

Twitter this week reset the passwords on an unknown number of accounts after discovering malicious file-sharing sites were set up to steal user login information.

Panda finds 2009 a record-breaking malware year

By

More than 40 million pieces of malware have been identified by PandaLabs and 55,000 new samples are being identified each day, many on social networking sites, the report states.

Twitter among web apps affected by patched XSS bug

By

A popular web application framework provider has shipped a fix for a dangerous XSS flaw.

Twitter used as botnet command-and-control hub

By

Researchers have discovered that Twitter messages were used to issue new instructions to bots.

Researchers laud Twitter alerts on bad links

By

Twitter has begun alerting users when they attempt to post a link to a malicious site.

Twitter malicious software attacks drag on

By

Never mind optimizing search result rankings, malicious attackers now are trying to optimize their tweets.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US