Zero Day

Ryan Naraine, Emil Protalinski and Dancho Danchev

Fake Kim Jong-il video distributing malware

By Dancho Danchev | January 9, 2012, 10:51am PST

Summary: Security researchers from ESET have spotted a fake YouTube video, distributing malware in the form of a link found in the description of the video.

Security researchers from ESET have spotted a fake YouTube video, distributing malware in the form of a link found in the description of the video.

Here’s what happens once the user clicks on the link:

When the user starts the installation, an application is automatically copied to the computer before the browser download manager sees a new incoming file. This type of file usually contains, in addition to advertising tools, other types of threats such as spyware or bots. These threats typically gain entry to end-user systems through tempting offers that encourage users to download applications. In this case, the incentive is an offer of free access to popular television series and movies over the Internet.

During December, 2011, another Kim Jong-il themed client-side exploits serving campaign was circulating in the wild, clearly indicating that event-based social engineering attacks are here to stay.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Zero Day”

'Remove Facebook Timeline' themed scam circulating on Facebook

Zeus returns: FBI warns of 'Gameover' ID-theft malware

Topics

Malware, Video, Corporate Communications, Spyware, Adware & Malware, Cyberthreats, Viruses And Worms, Security, Marketing, Dancho Danchev

Dancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering, malware and cybercrime incident response.

Full Bio
Disclosure
Contact

Vendor HotSpot

The 360° Conversation around Cloud Computing

TECH VISUALIZER brings the social conversation to life... powered by Brocade

Learn More »

Related Discussions on TechRepublic

Did you know you can take part in these discussions with your ZDNet membership?

Ask a Question Start a Discussion

The discussion hasn’t started yet. Why don’t you begin it?

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Vendor Showcase

TECH VISUALIZER Sponsored by Brocade

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources

How to get the most out of VirtualizationVirtualization can enable organizations to create more agile IT services ... (Hewlett-Packard (HP))Download Now
The Business Value of Adopting Advanced Support Tools and UtilitiesWhat are the difficulties associated with supporting advanced technology ... (Hewlett-Packard (HP))Download Now
Quest Migration Assessment Tool (QMAT)Get a Free Migration Assessment

Considering a migration? The ... (Quest Software)Download Now

ZDNet is available in the following editions:

Special Reports

Windows 8 revealed

The Great Debate

Tech Visualizer

ZDNet 20th Anniversary Special

Holiday Tech Gift Guide

Hot Topics

Zero Day

Fake Kim Jong-il video distributing malware

More from “Zero Day”

Topics

Disclosure

Dancho Danchev

Biography

Dancho Danchev

Vendor HotSpot

The 360° Conversation around Cloud Computing

Related Discussions on TechRepublic

The discussion hasn’t started yet. Why don’t you begin it?

Resources from our Sponsor

The best of ZDNet, delivered

ZDNet Newsletters

Vendor Showcase

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources

Featured Articles

Top Productivity Apps for the iPad 3

Facebook Lockdown: The Definitive Guide

A power user's guide to Windows 8

Love stinks: The worst mergers in tech

Services