tiny URL?

MissHell · 09-30-2009, 10:49 PM

Can anyone explain this more? I don't get it.

Is it just saying if someone sends a (tiny) URL link - check it before clicking?

What's behind that tiny URL?

Another threat that has emerged as a result of social networking is the tiny-URL attack. Some URLs are very long and don't work well in e-mail or in blog posts, which created a need for URL-shortening services. Twitter, with its 140-character limit, has made the use of URL-shortening services like Bit.ly a necessity.

Unfortunately, attackers can easily exploit a shortened URL to lure users into accessing malicious Web sites. Because the shortened URL is a random collection of characters that has nothing to do with the actual URL, users cannot easily determine whether it is legitimate.

Tweetdeck, a popular application for Twitter, provides a "Show preview information for short URLs" option, which offers some protection. The preview window shows details about the shortened URL, including the actual long URL it leads to.

If you aren't using Tweetdeck for Twitter, or if you need to deal with shortened URLs on other sites and services, maintain a healthy dose of skepticism and remain vigilant about what might lie behind that obfuscated address.

Protect Your Privacy Article
http://tech.msn.com/security/article...1912125&page=2

09-30-2009, 10:49 PM	#1
MissHell Followed the crowd over. Join Date: Nov 2008 Location: Hawaii Moto: '07 Yahama R6 Posts: 911	tiny URL? Can anyone explain this more? I don't get it. Is it just saying if someone sends a (tiny) URL link - check it before clicking? What's behind that tiny URL? Another threat that has emerged as a result of social networking is the tiny-URL attack. Some URLs are very long and don't work well in e-mail or in blog posts, which created a need for URL-shortening services. Twitter, with its 140-character limit, has made the use of URL-shortening services like Bit.ly a necessity. Unfortunately, attackers can easily exploit a shortened URL to lure users into accessing malicious Web sites. Because the shortened URL is a random collection of characters that has nothing to do with the actual URL, users cannot easily determine whether it is legitimate. Tweetdeck, a popular application for Twitter, provides a "Show preview information for short URLs" option, which offers some protection. The preview window shows details about the shortened URL, including the actual long URL it leads to. If you aren't using Tweetdeck for Twitter, or if you need to deal with shortened URLs on other sites and services, maintain a healthy dose of skepticism and remain vigilant about what might lie behind that obfuscated address. Protect Your Privacy Article http://tech.msn.com/security/article...1912125&page=2