MySpace, which we recently wrote about due to its partnership with Google, has shut down hundreds of user profiles as a precaution to a worm which is infecting user computers via MySpace & Apple’s QuickTime media player. The worm seems to change user profiles and add malicious links and content when the video is played.
Joris Evers at CNet reports:
A malicious video on MySpace.com pages changes people’s profiles when played, embedding itself and adding links to fraudulent Web sites, experts have warned.
When played by a MySpace user, the video adds itself to the user’s MySpace page and replaces the links on the user’s profile with links to phishing Web sites, Websense said. Phishing sites are fraudulent sites that attempt to trick people into giving up sensitive information such as log-in credentials.
And more from InformationWeek:
MySpace over the weekend shutdown hundreds of user profiles that had been infected by a worm that directed victims to a phishing site where they were asked to type in their user name and password, a security firm said.