Google's Orkut Social Network Hacked

Daniel ~ · #1 (**permalink**) 20th December, 2007, 01:08 PM

Written by Daniel
Thursday, 20 December 2007
Hundreds of thousands of users infected by XSS worm hidden in messages from 'friends'

DECEMBER 19, 2007 | 4:05 PM
By Kelly Jackson Higgins
Senior Editor, Dark Reading

A fast-moving cross-site scripting worm spread overnight through Google's Orkut social network, infecting users who viewed the emails or Orkut messages carrying its payload.... Front Page

Áedán · #2 (**permalink**) 21st December, 2007, 04:42 AM

It's an interesting interaction between flash and JavaScript. My understanding is that Orkut allows your friends to use arbitrary HTML commands. This was used to load up a bit of flash that downloaded a JavaScript file and execute it (from hpp://files.myopera.com/virusdoorkut/files/virus.js).

The JavaScript uses Web 2 technologies (AJAX) to do it's stuff, so that you don't see it working. Roughly, it does the following:

Joins you to a community (/CommunityJoin.aspx?cmm=44001818)
Uses the Compose.aspx in order to gain a list of your friends
Sends each one a scrap containing the JavaScript

There doesn't appear to be any payload attached to it, so it just infects a bunch of people and then does nothing.

Daniel ~ · #3 (**permalink**) 21st December, 2007, 04:26 PM

So Google has been warned?

Thread Tools
Show Printable Version Email this Page
Rate This Thread
Rate This Thread:

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Google's Android has long road ahead	Daniel ~	Mobile Devices and Networking	0	6th November, 2007 10:11 AM
Social Bookmarking Links	Gizmo	Forum Feedback and Suggestion Box	5	22nd October, 2006 12:30 PM
Google's timeline just got a push back!	Daniel ~	Random Nonsense!	2	11th September, 2006 04:08 AM
Google's Folding too	captaincurran	Samuknow's AOA FOLDING@HOME Team	11	22nd March, 2006 10:27 AM

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)