AOA Forums AOA Forums AOA Forums Folding For Team 45 AOA Files Home Front Page Become an AOA Subscriber! UserCP Calendar Memberlist FAQ Search Forum Home


Go Back   AOA Forums > Software > Data Security

Data Security Viruses, Firewalls and Safe computing


Reply
 
LinkBack Thread Tools Rate Thread
  #1 (permalink)  
Old 20th December, 2007, 07:08 PM
Daniel ~'s Avatar
Chief BBS Administrator
 
Join Date: September 2001
Location: Seattle Wa.
Posts: 45,606

Google's Orkut Social Network Hacked

Written by Daniel
Thursday, 20 December 2007
Hundreds of thousands of users infected by XSS worm hidden in messages from 'friends'

DECEMBER 19, 2007 | 4:05 PM
By Kelly Jackson Higgins
Senior Editor, Dark Reading

A fast-moving cross-site scripting worm spread overnight through Google's Orkut social network, infecting users who viewed the emails or Orkut messages carrying its payload.... Front Page
__________________
"Though all men live in ignorance before mystery,
they need not live in darkness...
Justice is foundation and Mercy ETERNAL
."
DKE

"All that we do is touched by Ocean
Yet we remain on the shore of what we know."
Richard Wilbur

[img]/forum/attachments/random-nonsense/16515-sigs-dan_drag.jpg[/img]
Subscribers! Ask Pitch about a Custom Sig Graphic

Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #2 (permalink)  
Old 21st December, 2007, 10:42 AM
Chief Systems Administrator
 
Join Date: September 2001
Location: Europe
Posts: 13,075

It's an interesting interaction between flash and JavaScript. My understanding is that Orkut allows your friends to use arbitrary HTML commands. This was used to load up a bit of flash that downloaded a JavaScript file and execute it (from hpp://files.myopera.com/virusdoorkut/files/virus.js).

The JavaScript uses Web 2 technologies (AJAX) to do it's stuff, so that you don't see it working. Roughly, it does the following:
  • Joins you to a community (/CommunityJoin.aspx?cmm=44001818)
  • Uses the Compose.aspx in order to gain a list of your friends
  • Sends each one a scrap containing the JavaScript

There doesn't appear to be any payload attached to it, so it just infects a bunch of people and then does nothing.
__________________

Last edited by Áedán; 21st December, 2007 at 10:42 AM.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #3 (permalink)  
Old 21st December, 2007, 10:26 PM
Daniel ~'s Avatar
Chief BBS Administrator
 
Join Date: September 2001
Location: Seattle Wa.
Posts: 45,606

So Google has been warned?
__________________
"Though all men live in ignorance before mystery,
they need not live in darkness...
Justice is foundation and Mercy ETERNAL
."
DKE

"All that we do is touched by Ocean
Yet we remain on the shore of what we know."
Richard Wilbur

[img]/forum/attachments/random-nonsense/16515-sigs-dan_drag.jpg[/img]
Subscribers! Ask Pitch about a Custom Sig Graphic

Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


Similar Threads
Thread Thread Starter Forum Replies Last Post
Google's Android has long road ahead Daniel ~ Mobile Devices and Networking 0 6th November, 2007 04:11 PM
Social Bookmarking Links Gizmo Forum Feedback and Suggestion Box 5 22nd October, 2006 06:30 PM
Google's timeline just got a push back! Daniel ~ Random Nonsense! 2 11th September, 2006 10:08 AM
Google's Folding too captaincurran ThunderRd's AOA FOLDING@HOME Team 11 22nd March, 2006 04:27 PM


All times are GMT +1. The time now is 03:26 PM.


Copyright ©2001 - 2010, AOA Forums
Don't Click Here Don't Click Here Either

Search Engine Friendly URLs by vBSEO 3.3.0