First it was spammy viral marketers and childish pranks. Now Twitter has reached the same level of insecurity as everywhere else on the web, as scammers have begun to tweet out malware-ridden links. While this isn’t YATW, these malware makers are hijacking trending topics to push their poison into the wild.
Mashable reports on how scammers have begun to spread links to sites “Twitterbest” and “Zasaden” on the .mp domain. Both host the commonly seen flash codec trojan which prompts the user to allow installation of what is supposedly an update to Adobe Flash player, and in actuality a rogue anti-virus utility, this one going by the name of “Fast Anti-Virus 2009.” The name may sound familiar to technicians on the front lines of virus removal, as it has been used by rogue anti-virus programs dating back to at least May.
Avoiding the bad domains is only half of the battle though, due to the fact that the vast majority of URLs posted on Twitter are via URL shortening services. Without 3rd party tools, there’s no way to tell where these links terminate before clicking them, and the trust instilled in most people by social media provides a sufficiently wide opening through which to ram a trojan exploit.
The upside is that since Twitter is apparently already censoring trending topics, we might be one step closer to finally getting rid of them altogether.