For our patrons who have MySpace pages, you will want to take a look at this article from PC World about the latest threat to MySpace users: a Trojan Horse program disguised as a Microsoft update. The “Trojan Horse” tricks users into downloading what he/she perceives to be a legitimate update, but instead, the victims inadvertently download a malicious and destructive Trojan Horse program.
Dave Marcus, a security research manager with McAfee, says that hackers were able to launch this attack because they either discovered a flaw in the MySpace code or found a way of taking over user accounts. Marcus oberserves, “Our best guess is [the owner of the one MySpace profile] just got their password and user name phished,” he said.
Social networking sites allow their members to use an array of powerful Web programming tools that are increasingly coming under the scrutiny of hackers looking for ways to misuse them.