The Register® — Biting the hand that feeds IT

Feeds

Is that YouTube clip you just watched booby trapped?

Streaming malware

By John Leyden, 20th June 2007
  • print
  • alert

Customer Success Testimonial: Recovery is Everything

Video clips from YouTube might come booby-trapped with malware, security watchers warn.

A fake video file containing the Zlob Trojan has been planted on the video-sharing site. If selected, the Trojan bombards infected users with ads. It might also be used to upload other forms of malware onto compromised PCs.

According to the California IT security firm Secure Computing, a lack of adequate content filtering by the Google subsidiary is exposing users to malware. "No one expects to find malware hidden in YouTube files," said Secure Computing's Paul Henry. "Yet the medium's popularity is highly alluring as a mass distribution vehicle for malicious code. What's alarming is that - from a security perspective - many users and organisations will be blindsided and potentially seriously exposed."

"Most of the leading firewalls are configured only to protect internal web servers, and not capable of blocking returned web code from external servers - which is the trend and certainly the direction this threat takes," he added.

Month of YouTube bugs

Separately, a white hat hacker complains about a lack of response from YouTube / Google developers after he warned them about security issues involving the site. Cross-site scripting vulns are among the unspecified vulnerabilities. The frustrated hacker says he is prepared to create a Day Of YouTube Bugs site where he'll release one or more vulnerabilities each hour - unless YouTube developers get in touch.

It's unclear if the vulnerabilities discussed on the sla.ckers.org forum are in any way related to the fake video malware threat. ®

Ensure Ease of Recovery with Asigra’s Agentless Software

COMMENTS

House Rules Send Corrections
All Reader Comments (5)
Latest Comments
Alan Donaly

where did it come from

Flash content is used by advertisers

every day is this a new threat or an old

one Google knows about advertising

they know how to keep this from happening

notice we haven't

heard of this before I would think it was fairly

common if it were easy to accomplish Elreg

knows all about corrupted ad servers this

seems like that sort of exploit.

0
0
Neil Anderson

How many?

Is it possible for YouTube to automatically scan all uploads for malicious payloads or file types?

--

Neil Anderson

http://www.cyclelogicpress.com

0
0
bigfoot780

files?

wonder if it in the .flv file or .swf? strange could this burst the youtube bubble.

0
0

More from The Register

breaking news
NSA PRISM-gate: Relax, GCHQ spooks 'keep us safe', says Cameron
Whatever they are up to, it's all above board, we're told
90
PRISM snitch claims NSA hacked Chinese targets since 2009
Snowden suddenly looks safer in Hong Kong after revelations
33
breaking news
US chief spook: Look, we only want to spy on 6.66 BEELLLION of you
Americans assured they are not in the NSA's sights
68
Speech-to-text drives motorists to distraction
Will talking to you mean I crash into that car up ahead, Siri?
30
DHS warns of vulns in hospital medical equipment
Has your doctor's anasthesia machine been hacked?
17
breaking news
Yes, maybe we should keep hackers in the clink for YEARS, mulls EU
Watch out black hats, they just might throw away the key
39
Microsoft borks botnet takedown in Citadel snafu
Stupid Redmond kicked over our honeypots, wail white hats
19
Critical Java SE update due Tuesday fixes 40 flaws
And yes, most are remotely exploitable
33
Kaspersky slips server security into PC software as attackers get crafty
Want to bag a CEO? Aim for his family
8
breaking news
'BadNews is malware' says outfit that found it
Google says code harmless but Lookout says code base is evolving
15