Pinterest Stumbleupon Whatsapp

An elaborate Twitter scam involving a sensational tweet about Barack Obama has been detected by Panda Security. This scam lures its victims with a promise of a video showing president Barack Obama punching a man for cursing him, leads them to a fake Facebook page where it steals their Twitter credentials, and closes the deal by enticing them to download a malicious worm disguised as “an update for YouTube player”.

It all starts with the scandalous tweet you can see below (personal details and racist content blurred). Users receive this tweet as a DM, and if tempted to click, they’ll be led to a fake Facebook page, where they will be asked for their Twitter credentials in order to watch the video. If you choose to enter your Twitter details here, the malware will promptly hijack your account and begin sending these DMs to all your contacts in your name.

Next, users are taken to a second fake Facebook page, complete with a fake YouTube frame, where a new message appears: “An update for YouTube Player is needed”, it says, prompting you to install this update in order to watch the video. Naturally, this is no YouTube Player update, but the Koobface.LP worm, which will infect your computer and steal your personal data.

This is by no means the only scam of its kind going around. As always, it’s crucial that you don’t click links with suspicious messages about scandalous videos and pictures of you or others, even if they seem to come from people you know. And even more importantly, if you’ve already clicked it, never enter your credentials and never download anything that looks even remotely off. An updated anti-virus software can save you if you’ve gone as far as downloading the worm.

Did you encounter this scam on Twitter?


Source: Panda Security

Image credit: Shutterstock

  1. kura
    December 11, 2012 at 10:21 am

    hahaha... I lol'd hard at that 'scandalous tweet'

    thanks MuO

  2. Debra Beshears
    November 26, 2012 at 11:41 pm

    I don't usually view videos...but I am sharing with friends.

  3. Somaiya Ebrahim
    November 19, 2012 at 7:07 am

    its amazing how people spend so much time thinking about making such scammy applications, when they could just get a job as an ethical hacker at google or facebook if they are so talented.

  4. Milinda Arambawela
    November 19, 2012 at 3:23 am

    Thank You for warning! I,m using Linux. I need to know this worm can attack linux.

  5. Ayyappa Sai Vennam
    November 16, 2012 at 12:02 pm

    bloody scam

  6. Félix S. De Jesús
    November 15, 2012 at 12:41 pm

    The problem is that people open links like this and they already know that is a Virus, or even a Worm.

  7. Sean A
    November 15, 2012 at 12:28 pm

    That is a creative way to steal stuff

  8. Lisa Santika Onggrid
    November 15, 2012 at 10:20 am

    Once again: do not click anything sent by unknown person.
    Wait, I give up. Curiosity kills the cat,yes?

    • Efi Dreyshner
      November 17, 2012 at 8:58 am

      Thinks twice before you hit the mouse..

  9. Terafall
    November 15, 2012 at 8:38 am

    I hate scam

Leave a Reply

Your email address will not be published. Required fields are marked *