news4geeks.net
16Nov/110

Facebook porn storm used same tactics as May’s Bin Laden spam

Posted by vica

IE8, IE9, Opera and Safari vulnerable to 'self-XSS' attacks

The attacks against Facebook that planted pornography on users' news feeds relied on the same trickery as a campaign last spring that touted the death of Osama Bin Laden, a security researcher said today.

On Tuesday, Facebook confirmed what it called "a coordinated spam attack" that resulted in sexually explicit images, as well as photos of animal abuse, spreading on member's pages.

Facebook identified the hacker tactic used to hijack pages and bombard friends with the photos as an exploit of what it called a "self-XSS browser vulnerability."

That label -- self-XSS -- has been used by other researchers, including those at Commtouch, to describe a ploy where spam messages tell recipients to copy and paste JavaScript into their browser's address bar. The script, however, is in fact malicious and exploits a bug in the browser. Read more...

Tagged as: , , , , , , , , Continue reading
   

Tags

Amazon Android Apple apps browser business China Chrome Cloud data devices Facebook Firefox Google Hackers hardware HP IBM Intel Internet iPad iPhone IT LINUX Malware market Microsoft Mozilla network Nokia Oracle OS RIM Samsung Security smartphones software Sony tablets Twitter web website Windows Windows 8 Yahoo

Categories

Calendar

May 2013
M T W T F S S
« Apr    
 12345
6789101112
13141516171819
20212223242526
2728293031