Login:
Password:
Lost Password?
Print this article  |  E-mail this article  |  Comment on this article

Online Video May Be Virus Writers' Next Target

By Ed Oswald, BetaNews

October 2, 2007, 11:30 AM

A new study from Georgia Tech indicates that online videos may be the newest way for attackers to load viruses onto the computers of unsuspecting victims.

The report was released Tuesday ahead of the annual security conference the school holds each year. Some 300 experts and professors are expected to attend, and will discuss new security threats and prevention measures.

What may make online videos an attractive new way to deliver malware is their ever-increasing popularity. Video sites such as YouTube are some of the fastest growing on the Web, and could deliver their payloads to thousands within hours if it is done right.

In fact, some attackers have attempted to lure consumers through fake video links posted to YouTube. However, the number of successful hacks via online video still remains quite small.

In an interview with the Associated Press, IBM chief technology officer and report co-author Chris Rouland said the move towards video is part of an evolution in how hackers are operating. He said these new ways are popping up due to the success in fighting e-mail attacks, forcing hackers to be more creative.

"The next logical step seems to be the media players," he says.

Add a Comment (7 Comments)

BetaNews reserves the right to remove any comment at any time for any reason. Please keep your responses appropriate and on topic. Foul language and personal attacks will not be tolerated.

Name (required):

E-mail (required):

Enter Your Comment:

By mdotwills

posted Oct 2, 2007 - 7:44 PM

The worst would be if somebody embedded malicious code into the flash file on the movie i.e. the player file. Big trouble there...

Score: 0

By mjm01010101

posted Oct 2, 2007 - 2:23 PM

I think the "fake video links" are links to sites that emulate youtube, but are actually hosted offsite, by using fake url's or other obfuscation techniques.

Score: 0

By Altman

posted Oct 2, 2007 - 12:03 PM

If you watch youtube videos then there is no way a virus writer can take advantage of any video exploit. Youtube compresses all video and so the exploit would have to somehow be written to survive the compression.

Score: 0

By pitdingo

posted Oct 2, 2007 - 1:02 PM

scratching my head......

Score: 0

By Altman

posted Oct 2, 2007 - 1:44 PM

The only way a video can directly infect your system with a virus is if it takes advantage of a known exploit in the video playing software like a buffer overrun. The virus writer can embed this in a video and when the video is played on the player that contains the exploit, then it will infect the machine. Youtube compresses all video that is uploaded, therefore the exploit written in the video will be destroyed through the compression.

Score: 0

By pitdingo

posted Oct 2, 2007 - 5:38 PM

Yes i know this. This is why i am scratching my head.

Score: 0

By DZNetworks

posted Oct 2, 2007 - 4:50 PM

Just never click on a link to an outside source promising you the full length version of whatever and you'll be fine.

Score: 0

Jul 7 - 10:53 AM ET Apple cuts price of MacBook Air with SSD by $500

Jul 3 - 6:45 PM ET Netflix box by Roku to get more content providers

Jul 3 - 6:30 PM ET US Justice Dept. sued for info on cellular tracking practices

Jul 3 - 6:27 PM ET Next Patch Tuesday has few security updates, big Vista reliability fix

Jul 3 - 5:49 PM ET BlackBerry Pearl users can test voice input for Google Maps

Jul 3 - 5:30 PM ET Adobe pushes its Flash 10 beta 2 refresh

Jul 3 - 4:39 PM ET Nokia and InterDigital start to disassemble their running feud

Jul 3 - 4:34 PM ET Do-it-yourself phone manufacturer declares its independence tomorrow

Jul 3 - 4:16 PM ET Study: US broadband access up overall, but down among the poor

Jul 3 - 3:54 PM ET Beta test a portable Web browsing device