Samedi 14 janvier 2012 6 14 /01 /Jan /2012 13:24
- Publié dans : Veille sécurité

GTalk bot, leading users to porn-related ("dating") website

An old-fashion IM bot, but this time over GTalk...

Here is the chat: 

 

loveflor3
hey whats up? 23/F here. youu?
moi
Sunny. Thx
loveflor3
hmm. have we chattted before?
moi
Yes
loveflor3
oh ok. l wasn't sure. anywayz.... whats up?
12:29
loveflor3
hello?
12:58
moi
yes
I'm having lunch
loveflor3
im Iikee so boreeddd.... there iss nothinggggg too do
moi
what's your name?
loveflor3
ohhh waiit! i have a greatt idea. have u eveer watched a sexyy girI Iike me striip Iive on a cam before?
moi
lol
loveflor3
wellIIl.... u couId watcch me strrip if u wouId Iike?
moi
no
loveflor3
yeah? okk weIl my cam is setuup through this webbsite so that i can't bee recorded so u have too signupp there.
it onIyy takes a minnute and it is freee. ok?
moi
we'll see
loveflor3
http://twurl.nl/yudz1w goo therre then up at thhe top of the paage cIlick on the goIldish JOIN FREE buttton.
The shortened URL will redirect the user to: 
https://www.becoquin .com/aff.php?dynamicpage=find2_fr&profiles=set1&a_aid=20cb8cf6&mundomreg=fr&data1=CD5407 
Wow, even HTTPS available! in order to make the user feel better?

capture_site_14012012.png
As you can see, the server runs NginX (but does not hide the version within the HTTP headers, sic), and is most likely be hosted in France...
On the other hand, WOT (Web Of Trust) does warn about it:

WOT_becoquin.com_14012012.png

 

Par Philippe V.
Ecrire un commentaire - Voir les 0 commentaires
Retour à l'accueil

 

Présentation

 

Articles récents

Liste complète

 

Recherche

 

Pages

 

Calendrier

Février 2012
L M M J V S D
    1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29        
<< < > >>

 

Créer un blog gratuit sur over-blog.com - Contact - C.G.U. - Rémunération en droits d'auteur - Signaler un abus - Articles les plus commentés