News Stay informed about the latest enterprise technology news and product updates.

Storm malware’s latest trick involves YouTube

The bad guys have been using the Storm malware quite successfully all year through a variety of social engineering tricks. Researchers say the latest example involves YouTube.

Researcher Vinoo Thomas writes in the McAfee Avert Labs blog that his organization observed a new trend over the weekend involving Storm, which it calls W32/Nuwar.

“The authors of this malware have resorted to spamming HTML formatted emails that pretend to be from a friend sending a link to a video from YouTube,” he said. “To the average computer user, the link in the email would seem perfectly legitimate as it points to, but if one were to hover the mouse over the URL, it would point to a numeric IP address. This is achieved by using special HTML anchor tags in order to obfuscate the malicious URL so that what the victim sees is usually not what they get.”

Of course, the advice here is to be very skeptical if you get any emails directing you to something on YouTube.

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.