Twitter worms - No threat to users of Kaspersky Lab products
Kaspersky Lab, a leading developer of secure content management solutions, announces that its products successfully detect all versions of Net-Worm.JS.Twettir that recently spread on the Twitter social networking site. Twitter is a free social networking and micro-blogging service that enables its users to send and receive short text messages. The malicious program Net-Worm.JS.Twettir began spreading on Twitter on Saturday, 11 April.
New York resident Michael Mooney, 17, has admitted creating the worm Net-Worm.JS.Twettir. He told BNO News that he had created the XSS worm "out of boredom." He also added that he wanted to show web developers the vulnerabilities in their products and to promote his own site via the link in the fake Twitter messages.
"The new worm does not have sophisticated functionality and is not a real threat because it does not steal personal data," according to Roel Schouwenberg, Senior Antivirus Researcher of the Kaspersky Lab Global Research and Analysis Team. The problem, in his opinion, lies elsewhere – in the possibility of launching malicious scenarios using such widespread and familiar interactive elements as buttons and links. "Also, in response to the new XSS-Worms, some web services have been created to supposedly protect the user. But again, these services ask users to just click on a link – while asking their friends to do the same. In other words, they behave in a similar way to malicious programs," he added.
Kaspersky Lab products successfully detect all versions of Net-Worm.JS.Twettir. They also provide effective protection from other script threats that arise when loading Internet sites and when using their interactive elements.