iTnews

Over 4,500 logins uploaded to open source content site

By Dan Raywood on May 24, 2010 1:02PM

Scammer leverages Scribd.

Over 4,500 logins have been published on a 77 page document on a shared content website.

Chris Boyd, malware researcher at Sunbelt Software, claimed that as Scribd allows users to share written content online, converting PowerPoint, PDFs and Word documents into web documents that can be viewed through sites such as Facebook and other social networking services, it was inevitable that a scammer would decide to use such a service for foul means.

He detected that a little over 4,500 mail logins (mostly from .ru domains, and possibly used for a .ru social networking site) in the form of a 77-page text document for anybody to download and plunder was uploaded to the site. At the time of writing, the document had been viewed 94 times and by the time it was deleted, that figure had increased to 152.

He said: “Interestingly, the account behind the upload is still busy posting utterly random content – everything from technical documents and videogame commands to what look like job advertisements, lists of cameras and descriptions of GIMP plug-ins (there's even a manual for Warhammer 40 000 lurking in there somewhere).”

With 970 uploads, the account was up to 1,308 with fresh (and entirely random) uploads appearing constantly, possibly by an automated process.

Boyd also pointed at a Russian forum, where victims noticed an increase in spam coming from their account, and a web search saw their stolen logins sitting on the Scribd page.

“Unfortunately there's no indication if their login was claimed through an infection or a phish, but whether the uploader is someone trying to make stolen logins ‘sociable' or some kind of automated bot gone awry there's an awful lot of compromised accounts being put up for grabs,” said Boyd.

See original article on scmagazineus.com

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
4500 content logins open over security site source to uploaded
In Partnership With
By Dan Raywood
May 24 2010
1:02PM
0 Comments

Related Articles

  • NAB overhauls security systems
  • US, UK go after Russian 'Evil Corp' hackers behind Dridex malware
  • Bunnings goes two track in online assault
  • New Shamoon-style disk wiper hits Middle East oil producers
Share on Twitter Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Broadband tax now planned to kick in July 2020

Broadband tax now planned to kick in July 2020

NBN Co shows its top user now hits 26TB a month

NBN Co shows its top user now hits 26TB a month

ATO moves to break up $1bn Optus megadeal

ATO moves to break up $1bn Optus megadeal

Infosys wins massive Centrelink payments engine deal

Infosys wins massive Centrelink payments engine deal

You must be a registered member of iTnews to post a comment.
Log In | Register

Whitepapers from our sponsors

Are you getting profitable outcomes from your IT?
Are you getting profitable outcomes from your IT?
Your Microsoft Security journey starts here
Your Microsoft Security journey starts here
Is your AWS framework well-architected?
Is your AWS framework well-architected?
Why you should  reassess your cybersecurity posture
Why you should reassess your cybersecurity posture
How will you manage the cloud data deluge?
How will you manage the cloud data deluge?

Events

  • Gartner Data & Analytics Summit
  • 2nd Data Governance & Management Summit Melbourne
  • 3rd Intelligent Automation Sydney Summit
  • Cyber Security for Higher Education
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.