Tubing attack on YouTube viewers revealed

by Bill Andad on Jun 8th, 2007, 9:01 am

Websense has created a YouTube video here which reveals exactly how a ‘tubing’ attack works. What is tubing? Well according to Websense it is a new crimeware technique that attempts to dupe the recipient into watching a YouTube video clip that is not all it might seem.

While watching the video, what is actually happening behind the scenes is that you are being presented with a YouTube decoy and a Trojan horse known as YouTube04567 is downloaded on to your PC. The payload is, as is so often the case these days, an information stealing Trojan designed to grab personal ID data from your PC which is uploaded to an as yet undisclosed remote location.

Websense warn that although it has captured this code on the web, the chances are very high indeed that there are email and instant messaging lures lingering around in the wild for the URL in question. And, of course, who knows how many new YouTube video tubing decoys have been created or are waiting to be released onto the video hungry public?

Print News Story

Similar Threads

Variable for viewers ? in DaniWeb Community Feedback
Counting the TV viewers, but how? in Geeks' Lounge
Working with Imaging Viewers in Windows Software

Comments on this News Story

Permalink

Jun 8th, 2007

-7

Re: Tubing attack on YouTube viewers revealed

There is a more technically detailed description of this threat posted in the Websense blog, for anyone who wants to know a little more about it.

happygeek

Freelance Word Punk

Offline

5,568 posts
since Mar 2006

Previous Thread in Networking Forum Timeline: forwarding ports to other servers?

Next Thread in Networking Forum Timeline: Set up router that passes through another router

DaniWeb Message

Cancel Changes

User Name
Password