Massive YouTube Spam

Security Incidents : Massive YouTube Spam

Posted by Max on 2007/10/7 12:08:49 (697 reads)

Hackers have turned YouTube into a spam channel by exploiting legitimate users invite feature. YouTube users have the facility to “Invite Your Friends”, which in effect allows them to send email to any address from their YouTube accounts.

This functionality is what the spammers are exploiting. The spam message is just like any “Invite Your Friends” message, except that it includes the typical spam content and links to spam Web sites. The messages all come from service@youtube.com.

"Spammers are doing this to defeat spam filters and to lower the recipient’s guard by making it look as though the messages are coming from a perfectly innocuous email address. YouTube’s own Help Centre suggests that you exclude the service@youtube.com email address from spam filtering. The spammers are keenly aware of this," said Bradley Anstis, Marshall’s director of product management.

Our advice is to avoid clicking on email links whenever you have doubts about the sender's identity. Even though YouTube support recommends to exclude service@youtube.com from the spam filters, we recommend you not to make this exception. After all, this is exactly what hackers are counting on.

Previous article - Next article

Other articles
2008/8/21 15:52:01 - BitRoll and Torrent101 Used to Distribute the Lop Adware
2008/8/20 15:06:33 - FRAUDFacts Helps You Fight Identity Theft and Fraud for Life
2008/8/13 16:42:03 - 10 Million Zombies Are Spreading Spam and Malware Every Day
2008/8/11 9:03:35 - Nearly $8.5 Billion Lost by US Consumers because of Online Threats
2008/8/8 6:35:36 - EDS' Eight Tips for Consumers to Protect Themselves from Identity Theft

The comments are owned by the poster. We aren't responsible for their content.