Malware writers have revamped code that uses a popular Twitter command to generate hard-to-predict domain names, a technique that brings stealth to their drive-by exploits. Four weeks ago, when The Register reported Twitter application programming interfaces were being used to generate pseudorandom domain names, none of the …
So it's not really using Twitter...
... as anything other than a publicly-observable source of common random numbers? Huh, there are a million ways of doing this sort of trick. Check a stock feed and get the third letter of the day's highest riser. Download the front page of a news website and look at the fourth letter of the third word in the second paragraph of the first story. Number of posts to alt.test that day? Hell, check the temperature in LA or the humidity in Moscow on a weather site.... the possibilities are endless. Twitter just makes a badger-tastic hook to hang the story on.
Why is using twitter topics to generate random URLs any better than using say the headlines on bbcnews or any RSS feed that changes on a regular basis?
- NASA boffin: RIDDLE of odd BULGE FOUND on MOON is SOLVED
- Pic 7 AMAZING experiments set for Mars Rover 2020 – including oxygen generation
- Microsoft's Euro cloud darkens: US FEDS can dig into foreign servers
- Plug and PREY: Hackers reprogram USB drives to silently infect PCs
- Boffins spot weirder quantum capers as neutrons take the high road, spin takes the low