Father of Social Networking worms (Koobface) comes to Linux and Mac OS X via Java

The Bad

On social networking sites like Twitter, Facebook and MySpace, if someone says to you ”Is it you in this video?,” be warned, because in reality, it leads to a fake YouTube page with a thumbnail which when clicked checks you OS version, downloads a Java applet called jnana.tsa on Linux and exploits a Remote Code Execution vulnerability in outdated versions of Java. Once installed on a computer, the worm hijacks the social networking accounts of its owner and uses them to propagate.

The Good

The applet is dropped inside the user’s home directory and stops running at computer reboot. This means that on Linux, unlike on Windows, the Koobface infections are temporary. Which means if you happen to get that infection,  reboot immediately.

The Ugly

This shows that Linux and Mac OS X users aren’t vulnerable to malware, as their market share increases they will become an attractive target for social networking worms like Koobface.

via Softpedia


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s