An important advice is that concerning the using of an adequate security system when visiting MySpace.com: be aware of the false Microsoft updates.The specialists from the security vendor McAfee informed that a Trojan Horse program could be easily downloaded if the customers don’t pay enough attention. It is hidden in a Microsoft update and it is using a hacked MySpace profile.
Although the damage is not important yet, McAfee is worried that sites such MySpace could be exploited by the online criminals.
A popup window invites the web surfers to download the latest version, created this Tuesday, of Microsoft's Windows Malicious Software Removal Tool, which is provided by Microsoft for the Windows users who would like to clear their systems of malware.
In this moment the users see a popup window, as a part of a bigger image which appear on almost the entire screen, and if they misfortunately click the image the computer automatically will start to download the Trojan program.
Dave Marcus, a security research manager with McAfee, stated that the Trojan, recognized as TFactory, is a notorious code used by hackers for about a year.
Marcus also declared that the attack was successful because these guys either found out an imperfection in the MySpace code or determined a possibility of getting user accounts. We reproduce the exact words: "Our best guess is [the owner of the one MySpace profile] just got their password and user name phished".
A collection of powerful Web programming tools must be used by the social networking members, even if the hackers are trying to discover new modalities to abuse them.
Not even notorious musicians profile from MySpace like Alicia Keys’s didn’t escape the Web-based attack code from November.
