Sophos Gossip girl sex tape lure spreads malware via Gui Kawasaki’s Twitter account
June 2009 by Sophos
Sophos is reminding all Twitter users of the importance of ensuring their computer security is up to date following news that internet celebrity, Guy Kawasaki’s Twitter account has been used to spread malware that targets both Windows and Mac users.
Sophos has posted a video on YouTube, which journalists and bloggers are free to embed on their own websites, demonstrating the exploit of Guy Kawasaki’s Twitter account and what happens if you fall into the hacker’s trap: http://www.youtube.com/watch?v=dpnW...
Hackers posted a message on Kawasaki’s Twitter page including a link which claimed to offer a free sex video of Leighton Meester, star of hit TV show ’Gossip Girl’. Actually clicking on the link takes users to a series of websites which offer to show a tape of the young Hollywood actress. However, Sophos notes that once users agree to download the video, the webpage will not show the video but will check if you are visiting the site using an Apple Mac or a Windows computer and serve up the relevant piece of malware.
"The fact that this tweet claimed to come from Guy Kawasaki is worrying since he has almost 140,000 followers, and therefore potential victims," said Graham Cluley, senior technology consultant at Sophos. "By offering the chance to watch a free Leighton Meester sex video, the hackers have probably succeeded in tricking some people into downloading their malware. What’s more, many Mac users are still not running anti-malware, and thinking themselves immune to cybercrime, they might have seen no harm in clicking on the link just to see what happened."
Sophos notes that this is the second time this month that hackers have targeted Mac users with the lure of X-rated videos, and advises all computer users to exercise caution when clicking on links on social networking sites like Twitter.