1 min read

Twitter Spam Campaign Exploits CNN Vulnerability

Bianca STANESCU

June 07, 2013

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Twitter Spam Campaign Exploits CNN Vulnerability

A campaign that takes advantage of vulnerabilities on the CNN website is flooding Twitter users with diet spam, according to eHackingNews. Cyber-criminals exploit the open redirect flaw to post spam messages that look like they’re coming from the reputable news organization.

Twitter Spam Campaign Exploits CNN Vulnerability“The diet porgram you told us about yesterday is soo good!”, spammers tweeted, then redirected users to a malicious website.

“I love myself even more after I started your diet porgram [link]”, another message reads. “Yahoo made an article about how amazing your new diet program is!! You look amazing.”

Spammers made grammar mistakes to avoid antispam filters and gained users` trust by associating the scam with a renowned company. Because the request goes to the CNN website, the URL filtering doesn`t block access to the malicious websites.

According to eHackingNews, a similar security vulnerability might also be exploited in Yahoo. This is not the first time CNN is targeted by cyber criminals. Three years ago, scammers managed to exploit the same flaw in “ads.cnn.com”.

Open redirects are applications that take a parameter and redirect users to its value without validation. Exploiting vulnerabilities in open redirects allows cyber-criminals to make users visit their own website, without noticing.

Due to its increasing popularity, Twitter is targeted more often by cyber-criminals and social engineers. Recently, a popular hashtag on the micro-blogging platform started to be abused for phishing and identity theft.

After a series of high-profile hackings, the company announced two-factor authentication in May, including mobile phones in the verification processes.

tags


Author



Right now

Top posts

Abode IoT Security Camera Vulnerabilities Would Let Attackers Insert Images, Bitdefender Finds

Abode IoT Security Camera Vulnerabilities Would Let Attackers Insert Images, Bitdefender Finds

December 21, 2021

2 min read
Online Shoppers Beware, Mobile Scams Are on the Rise

Online Shoppers Beware, Mobile Scams Are on the Rise

December 17, 2021

2 min read
The Holiday Guide to Tech Support: Fixing the Family Computer

The Holiday Guide to Tech Support: Fixing the Family Computer

November 24, 2021

2 min read
Bitdefender Celebrates 20 Years of Cybersecurity Leadership

Bitdefender Celebrates 20 Years of Cybersecurity Leadership

November 04, 2021

3 min read
Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

October 26, 2021

3 min read
What are drive-by download attacks and how do you prevent them?

What are drive-by download attacks and how do you prevent them?

October 25, 2021

2 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Malware Posing as Ransomware Responsible for Ukraine Cyberattack Malware Posing as Ransomware Responsible for Ukraine Cyberattack
Silviu STAHIE

January 17, 2022

2 min read
Russian Authorities Cuff Last Remaining REvil Suspects Russian Authorities Cuff Last Remaining REvil Suspects
Filip TRUȚĂ

January 17, 2022

2 min read
Android 12 protects phones from Stingray attacks, lets users disable 2G Android 12 protects phones from Stingray attacks, lets users disable 2G
Radu CRAHMALIUC

January 14, 2022

1 min read