Feeds

'I like big butts and I cannot lie, hackers take Pinterest on a joyride'

So spammers say you're fat, well, we ain't down with that

Security for virtualized datacentres

NSFWish Miscreants have made an ass out of users of bewildering photo-sharing website Pinterest – by hijacking their accounts to flood the boards with butt pics.

The cheeky spammers gained control of the profile pages by tricking victims into clicking on “Pin This” widgets on websites or running dodgy apps, all of which had malicious code hidden inside. The rump snaps were then pasted all over users' image boards to tout dubious weight-loss pills. Suffice to say, Pinteresters Pinners were pretty bummed out by the vandalism.

So it appears diet-pill spammers have moved on from joyriding the Twitter profiles of celebrities to the twee world of cats and cupcakes – it's an endorsement, of sorts, for Pinterest though not one the social network is likely to welcome.

In a statement this morning, US West Coast time, the website's team told The Reg its techies have got to the bottom of the problem, and are in the process of cleaning up the mess:

Our systems were alerted to some incidents of spam yesterday evening. These reports did not come in at a large scale, and we began working on cleaning up and placing the accounts in safe mode immediately. The accounts have since been secured.

We work hard to protect the security of Pinners. As part of that effort, when we see that compromised email credentials are being used in an attempt to gain access to Pinterest accounts, we immediately notify the at-risk Pinner and remind them to reset their password. The best precaution is to use a strong and unique password that is not used on other sites.

This graffiti, brought to our attention by TechCrunch, is not the first of its kind to hit the up-and-coming social network: earlier this month the US Better Business Bureau put out an alert urging users to not click on dodgy looking "pins" – the term Pinterest uses for a digital scrapbook images. Tips from Pinterest on account security can be found here. ®

Secure remote control for conventional and virtual desktops

More from The Register

next story
NASTY SSL 3.0 vuln to be revealed soon – sources (Update: It's POODLE)
So nasty no one's even whispering until patch is out
Russian hackers exploit 'Sandworm' bug 'to spy on NATO, EU PCs'
Fix imminent from Microsoft for Vista, Server 2008, other stuff
Microsoft pulls another dodgy patch
Redmond makes a hash of hashing add-on
'LulzSec leader Aush0k' found to be naughty boy not worthy of jail
15 months home detention leaves egg on feds' faces as they grab for more power
Forget passwords, let's use SELFIES, says Obama's cyber tsar
Michael Daniel wants to kill passwords dead
FBI boss: We don't want a backdoor, we want the front door to phones
Claims it's what the Founding Fathers would have wanted – catching killers and pedos
Kill off SSL 3.0 NOW: HTTPS savaged by vicious POODLE
Pull it out ASAP, it is SWISS CHEESE
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
Win a year’s supply of chocolate
There is no techie angle to this competition so we're not going to pretend there is, but everyone loves chocolate so who cares.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.