Malware has been detected on fake YouTube pages.
PandaLabs has detected YTFakeCreator, a program used by cyber-crooks to create fake YouTube pages to infect users with malware, on the site. It works by spammers sending an email that apparently contains a sensational video and encourages users to click a link to watch the video.
Once the user is at the page, which is not on the YouTube network, the user sees an error message telling them that they can't watch the video as a certain component is missing (a codec, an Adobe Flash update, etc.) and prompts them to download it. This is where the Malware is downloaded onto their computers.
YTFakeCreator allows for the easy creation of fake YouTube pages as they can enter the text for the error message displayed by the web page; define how long it takes the message to appear; enter the link to the infected file downloaded onto the victim's computer; and create a false profile similar to those in YouTube to pretend the video has been uploaded by a real user.
Dominic Hoskins, country manager, Panda Security UK, said: “This type of program has led to the increased use of this technique to infect users. The tools made available to cyber-criminals nowadays force users to take every precaution to avoid falling victim to these attacks.
“Also, the fact that the pages used by criminals are very difficult to distinguish from the legitimate pages helps ensure that a growing number of users are infected.”