Social network used as control and command center

Traditionally, control and command centers for delivering malware payloads were located at rogue ISP or some other underground network. But according to researchers at RSA, social networks could become new location for those centers.

Cybercriminals have been already distributing the "Brazilian Banker" Trojan using a method that stores encrypted malware in the text of a user profile. That method allows the attackers to issue encrypted commands without renting a dedicated server or registering a domain. It could be used on almost any social networking or Web 2.0 platform that enables the almost unrestricted posting of comments, creation of public profiles, and the setup of newsgroups. However, banking Trojan attacks that host communication resources on public resources are still quite rare. Also, after a threat is detectedthe removal of these command and control points is simple and quick. Original news, with more information, could be found at darkREDAING web site.