GoFuckYourself.com - Adult Webmaster Forum

GoFuckYourself.com - Adult Webmaster Forum (https://gfy.com/index.php)
-   Fucking Around & Business Discussion (https://gfy.com/forumdisplay.php?f=26)
-   -   Twitter spam worm? (https://gfy.com/showthread.php?t=899209)

420 04-11-2009 08:07 PM
Twitter spam worm?
 
http://mashable.com/2009/04/11/stalkdaily-twitter

Quote:
While reports are still coming in and we’re trying to keep this lightweight enough for everyone to understand, here’s our draft summary of the steps taken by the attacker (please add info and explanations in the comments section and we’ll continue to update this). The attacker:

1. Realized that Twitter allows you to insert not just a URL in your “bio” section, but also a script (a quick glance at the source suggests that the javascript used is hidden in the color attribute and hosted at a site called mikeyylolzuuug dot com)

2. Created one or more Twitter profiles with malicious code in the bio sections, enticing Twitter users to visit the pages by following those users (one malicious account may have been called “gangsterboy”)

3. When the profile is visited, the script has a delay of approximately 3 seconds before requesting the Twitter cookie and username from your browser

4. These details are used to create an authentication token, allowing the script to execute any of the actions allowed through the Twitter API

5. The script sends out Tweets on the affected account

6. The script also inserts the itself into the user’s Bio section, making their Twitter account a host.
My only question is which gif will mikey post?

Angry Jew Cat - Banned for Life 04-11-2009 08:12 PM
genious....

SmokeyTheBear 04-11-2009 08:20 PM
youtube had the almost exact same problem a year or 2 ago

Angry Jew Cat - Banned for Life 04-11-2009 08:47 PM
maybe a couple months back myspace videos had a similiar javascript exploit where any javascript uld be executed through one of the input fields. they were pretty quick to get it cleared up though...

420 04-12-2009 03:26 AM
7 hours ago http://status.twitter.com reported worm removed and holes fixed.

Current trending topic:
http://i39.tinypic.com/hwlmgw.jpg

seeandsee 04-12-2009 03:30 AM
bump for gif

d-null 04-12-2009 03:35 AM
http://i43.tinypic.com/2affyad.jpg

halfpint 04-12-2009 03:38 AM
I had a similar problem with WPMU and Buddy Press. If the admin added more user profile fields than what was written into the original core. Anybody that had signed up could add any code they wanted and it wasent filtered out. Buddy Press have now fixed it


All times are GMT -7. The time now is 12:28 PM.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2026, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123