Thursday, August 27, 2009 10:16 AM
cmosby
Worm That Exploits your Friendship – Symantec Security Blogs
Worm That Exploits your Friendship
Shunichi Imano
August 25th, 2009
Filed under: Endpoint Protection (AntiVirus), Emerging Threats, Vulnerabilities & Exploits, Security, Security Response
Symantec Security Response has found a new threat that spreads through Renren.com, which is a very popular Social Networking Site in China ala Facebook. The threat comes in a form of a Flash video, which pretends to be a famous Pink Floyd promotional video clip "Wish you were here."
Viewing the Flash video results in concealed JavaScript being executed while the video is playing.
The video is hosted on a legitimate site. The threat exploits an authentication cookie of a currently logged-in user in order to send out the same link (for the Flash file) to users on the Friends list.
We detect this malicious XSS threat as Js.Frienren.
Filed under: Security and Anti-Virus, Spam\Phishing, Social Networking