We’d like to remind Forumites to please avoid political debate on the Forum.

This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.

📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!

YouTube Trojan Horse

sho_me_da_money
sho_me_da_money Posts: 1,679 Forumite
Part of the Furniture 1,000 Posts Combo Breaker
in Techie Stuff
Hey guys,

I am sure you dudes view video clips on YouTube.

Well i have just read an internet article/video tutorial about how Trojan Horses are being imbedded within these clips.

The article is the first story on https://www.comnetslash.com.

Should the story be superceded by latest news, the direct link is, http://www.comnetslash.com/2007/06/11/hacking-save-yourself-from-youtube-trojan-horse/

Hope it helps and be careful.

Comments

  • thomas01155
    thomas01155 Posts: 2,382 Forumite
    Part of the Furniture 1,000 Posts Name Dropper Combo Breaker
    ~~ ..........
  • Browntoa
    Browntoa Posts: 49,612 Forumite
    Part of the Furniture 10,000 Posts Name Dropper Photogenic
    he likes to spam his web site on here does'nt he !!

    copied from here metinks

    http://techdigest.tv/2007/06/the_trojan_viru.html

    or the original article from the people who made the video

    http://www.websense.com/securitylabs/charts/threatmap.php

    copied here for easy reading !!

    [FONT=Arial, Helvetica]Crimeware using "YouTube Evasion"[/FONT]

    [FONT=Arial, Helvetica]The other day we ran into a new technique that makes and attempt to distract the user into viewing a new YouTube video. The application uses the movie icon when it gets downloaded to the machine but strictly relies on deception to get you to run it.The file is called YouTube04567.exe and was hosted on a web server in the .SU domain (Soviet Union). Although we captured this code through on the web, our guess is that there are email and/or instant messaging lures for this URL in the wild.[/FONT]

    [FONT=Arial, Helvetica]Assuming the user runs the file, the application then opens your default browser and connects to a YouTube video called "After World Episode 6". In the background it then connects to another web server which is hosted in Washington, D.C. and downloads two additional files which contain the payload.[/FONT]

    [FONT=Arial, Helvetica]The payload code are information stealing Trojan Horses which are designed to grab information from the local machine and upload it to a remote location via HTTP upon pre-determined actions.[/FONT]

    [FONT=Arial, Helvetica]What is also interesting is that, although we don't believe this to be the case in this example, you could use this also a means to track infections of users by watching the number of people who have viewed the video.[/FONT]

    [FONT=Arial, Helvetica]We created a very simple video of the code in action and, for ironic value, posted it on YouTube for you to view. (not infected link, purely shows how it works[/FONT]

    [FONT=Arial, Helvetica]Site:[/FONT] [FONT=Arial, Helvetica]http://www.youtube.com/watch?v=pzKmzO_Xq3k[/FONT]
    Ex forum ambassador

    Long term forum member
  • BornSloppy
    BornSloppy Posts: 288 Forumite
    I almost clicked cos addicted to youtube...
  • sho_me_da_money
    sho_me_da_money Posts: 1,679 Forumite
    Part of the Furniture 1,000 Posts Combo Breaker
    Copy?

    If it was a copy of an article then it would be worded in exactly the same way?

    Editing and wording a story that you have learned about and then posting it isn called copying.

    I think ill stick with your theory and say that the Daily Mirror copies The Sun who copies The Daily Star and so on and so forth.

    Oh and i forgot, the Daily Mirror are spammers as they are copying other sources.

    Get a life man.

    The story has been submitted in thousands of places.

    I read, i edited and made it a simple way to educate and make other people on the board aware.

    I bet if i put https://www.google.com you wouldnt say im spamming.

    The story is give n take with giving people the latest know how in a way i thought best.

    I would hold my hands up and say i am a spammer if i posted something non-tech related that i owned, like !!!!!! or was selling something, which i am not.

    Ciao
  • Browntoa
    Browntoa Posts: 49,612 Forumite
    Part of the Furniture 10,000 Posts Name Dropper Photogenic
    own web site...ALWAYS posting it on here, which is not allowed

    I've posted the original article
    save people going off site,

    gives credit where it's really due
    Ex forum ambassador

    Long term forum member
  • sho_me_da_money
    sho_me_da_money Posts: 1,679 Forumite
    Part of the Furniture 1,000 Posts Combo Breaker
    To be fair - Not always at all.

    Last time i actually logged in before today was Early May ( a month ago)

    And yes i agree, credit must be given where its due.

    Believe it or not, my article wasn't taken from the Websense original.

    I have the news submitted by email by techies which i edit and post.
This discussion has been closed.
Meet your Ambassadors

🚀 Getting Started

Hi new member!

Our Getting Started Guide will help you get the most out of the Forum

Categories

  • All Categories
  • 352.2K Banking & Borrowing
  • 253.6K Reduce Debt & Boost Income
  • 454.3K Spending & Discounts
  • 245.3K Work, Benefits & Business
  • 601K Mortgages, Homes & Bills
  • 177.5K Life & Family
  • 259.1K Travel & Transport
  • 1.5M Hobbies & Leisure
  • 16K Discuss & Feedback
  • 37.7K Read-Only Boards

Is this how you want to be seen?

We see you are using a default avatar. It takes only a few seconds to pick a picture.
Update Your Picture