We have seen how an Short url service can exploited by malware , now this can be made secure by verifying the final url against service like – stopbadware.
And we have seen in real time ,that it is effective against malware exploitation & this should be implemented in all similar service to make web experience more safe.
Short URL service has been exploited for spreading malware for an long time , here is one example
Hi! Please look at this short video. What are they doing?
tube23441.notlong.com/
following message is posted to google group , this redirects to
eusebiotanis.150m.com – this is again a freehosting page
<script>
window.location.href=("hxxp://flashtubes.net/xplay.php?id=45230");
</script>
this loads following malware.
<CENTER><A
href="hxxp://freefilesarchive.com/flash-HQ-plugin.45230.exe"><IMG
onmouseover="window.status = 'Download Streaming Player Media please!';"
alt="You must Download and Run Video Controller Object to play this video file."
src="img/xplayer.gif" border=0></A>
</CENTER></DIV>
Short URL – can lead to malware sites, so beware if you click one.
whois information shows
Registrant:
N/A
Farah F Jones
2733 Canis Heights Drive
City Of Commerce
California,90040
With every new release there is same release of fake to steal user information. Here it is for New orkut.
user would receive spam mail with an invitation to join new orkut.
but link points to .
orkutnew.ning.com/?xgi=31XH2qxBierBjA&xg_source=msg_invite_net
site gets the user orkut profile information ,
this is site hosted to ning service with an malicious intent.
Initial vector: Whatsapp spam user posing as union bank with logo in user profile shared apk file named as “Union Bank Aadhaar Update....
