Defense in Depth Subscribe to Defense in Depth

May 16, 2008 1:10 PM PDT

Fake codec found in AOL forum

Posted by Robert Vamosi

Visitors to AOL's main portal page may have seen a headline "Disgraced 'Oprah' Author Is Back" circulating, but those who clicked may have infected their computers, says Roger Thompson, Chief Research Officer of AVG Technologies.

Thompson said anyone clicking on the headline link would be taken to a legitimate forum page discussing James Frey's latest book, Morning. However, some of the blog posts on that page contained a link to a video site. In order to view the video associated with that post, the user would have to accept the installation of the video codec.

Upon accepting the codec download, the user's machine would become infected with the Zlob Trojan.

A spokesperson for AOL said: "The malware link referenced in the story appeared in the "Comments" section of an AOL News site, and was posted by an outside source. AOL has several tools and resources in place to quickly identify and remove dangerous or false links, and as a result, identified and removed the link from the site. Per our overall policies regarding user generated content, the person responsible for posting the link has been banned from posting on the site again, and all content posted by them has also been removed."

Thompson agrees that AOL's security is good and sees the incident as a warning. "If ever you have to install a codec to watch a video, don't. It's just not worth the risk," he said.

Topics:: Security

Tags:: security,; Roger Thompson,; AVG,; AOL

Bookmark:: Digg; Del.icio.us; Reddit

Recent posts from Defense in Depth: Researcher offers insight into DNS flaw; Cisco releases its DNS patches; Massive, coordinated DNS patch released; Microsoft fixes 9 flaws with 4 patches; none critical; Researcher faults Apple iPhone on security updates

Add a Comment (Log in or register) 1 comment (Page 1 of 1)


by damonbock May 16, 2008 3:04 PM PDT: come on! You've completely been fooled by this researcher. Did you even look at the link? It's just link spam.

A blogger on InternetNews.com got this right and wasn't fooled like you.
http://blog.internetnews.com/skerner/2008/05/aol-hacked-i-dont-think-so.html; Reply to this comment

Powered by Jive Software

About Defense in Depth
With over eight years at CNET covering computer viruses and computer crime, Robert Vamosi goes beyond the hype to provide you with expert interviews with the top security researchers making the news as well as offering the hands-on, non-technical advice you'll need to stay safe online.

Subscribe to this blog
Click this link to view this blog as XML.

Add this feed to your online news reader

Defense in Depth topics

Most popular stories

Latest tech news headlines

All News.com headlines »

Featured blogs

Beyond Binary by Ina Fried

Coop's Corner by Charles Cooper

Geek Gestalt by Daniel Terdiman

One More Thing by Tom Krazit

Outside the Lines by Dan Farber

The Iconoclast by Declan McCullagh

The Social by Caroline McCarthy

Underexposed by Stephen Shankland

CNET.com

Welcome (log out) |View profile

Log in | Sign up Why join?

On TV.com: KIM KARDASHIAN is hot hot hot

Electronics & Computers Deals here!

Copyright ©2008 CNET Networks, Inc., a CBS Company. All rights reserved.
Privacy policy
Terms of use