CyberInsecure.com

Daily cyber threats and internet security news alerts
May 16th, 2008

Stolen Database Being Used To Spam Stickam Users

Users of Stickam.com, a live webcam chat site with more than two million members, many of them teenagers, have been spammed this month with messages that mention Stickam but promote pornographic live video sites. The spam message pretends to be sent by a friend from Stickam and offers victims to send a message to certain MSN messenger address. If you send messages to the included address, you get a link to a page promoting one woman’s offerings on SlickCams, a live pornography site that appears to be unrelated to Stickam.

Many of the people receiving the spam are assuming that it is coming from Stickam. Stickam says it is not sending the messages — but it is the source of the e-mail addresses to which they are being sent. Hackers broke into a message board system on the site in November and made off with the addresses that are now getting spam.

The spam attack comes at an awkward time for Stickam, which has developed a reputation as a place where teenagers do things they probably shouldn’t be doing in front of webcams. Its image was not helped by the revelation that it is backed by a large online pornography business.

The hacking problem raises questions about whether the site is doing enough to protect its users’ personal information. Stickam released a statement from its chief executive, Steven Fruchter, saying that the spam was “a result of illegal hacking on an old community forum system, which is no longer used.” Stickam.com has alerted the law enforcement authorities and is working closely with them to pursue legal action against those involved. The company was working with “the Secret Service and a specialized Internet security research firm” on a continuing investigation into the hack. He said that the spam problem should not affect people who have joined the site since the break-in, and that Stickam has taken steps “to ensure this type of event can never happen again.”

 

Credit: David F. Gallagher, The New York Times Bits

Bookmark or Share:
  • Digg
  • del.icio.us
  • StumbleUpon
  • Technorati
  • Slashdot
  • Reddit
  • YahooMyWeb
More on CyberInsecure:
  • Chinese Spammers Target US And UK Firms, 40000 RIBA Members Warned
  • Russian Citizens Database Is Now Online
  • ORDB.org Blacklisted All IP Addresses
  • Oracle Patches Critical Database Vulnerabilities
  • New Lateral SQL Injection Method To Hack Oracle Database

    • Posted in Hacked, Spam | Print This Post Print This Post

    This entry was posted on Friday, May 16th, 2008 at 6:50 am and is filed under Hacked, Spam. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

    If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: Stolen Database Being Used To Spam Stickam Users

    One Response to “Stolen Database Being Used To Spam Stickam Users”

    1. Doug Asker Says:
      June 8th, 2008 at 6:21 pm

      It seems that the social networking movement will be stopped in its tracks if people loose confidence in those who store their data. Social networking companies need good and effective spam bots but also, and more importantly, human intervention. Faceparty in the UK had recently had to kill their chat rooms because of abuse. Effective moderation will just have to be seen as a cost of doing business in this space!

      -Doug Asker

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. Please leave your real email, it wont be published.

    *
    To prove you're a person (not a spam script), type the security word shown in the picture.
    Anti-spam image

    « « NSA Goes Offline Due To A DNS Glitch
    Cross-Site Scripting Vulnerability On Paypal Could Be Used In Phishing Attacks » »