SecurityTube

Yahoo Mail Breach Linked to Old Wordpress Vulnerability

JB

Researchers at Australia-based BitDefender say they've found how some Yahoo Mail accounts are being hijacked, and it leads back to "buggy" blog software Yahoo's developers used.

For about a month Yahoo Mail account holders have been falling for a scam in which they click on a short link that appears to take them to an MSN/NBC News site. However, it actually is linked to the domain com-im9.net that is registered in the Ukraine and hosted at a data center in Cyprus. A page on the bogus site includes a piece of malicious Javascript masquerading as a Lightbox library, according to a news release issued today. The code connects with the user's contacts and sends spam under his or her name.