It doesn’t take a genius to figure out that the “Bom Sabado!” messages are automatically generated by a script. However, it is not clear if this is simply a script exploiting vulnerability in Orkut, or have the accounts sending the automated scraps been compromised.
If you are amongst those affected, it’s highly recommended that you follow the steps highlighted below:
* Switch to the “older version” of Orkut.
* Log out of Orkut.
* Clean your browser’s cache and cookies.
* Log in and change your password and security question.
If you haven’t been affected yet, it is strongly advised that you avoid Orkut until the issue has been resolved. Some ve managed to trigger the same exploit while researching this article. Recently other high profile websites like Twitter and YouTube also fell victim to XSS attacks.
Update 1: The worm appears to have originated in Brazil, where Orkut is still exceptionally popular. Many of the affected users are noticing the Brazilian flag on their status messages. Additionally, the word ‘Bom Sabado’ means ‘Good Saturday’ in Portuguese, which is the official language of Brazil. We are still awaiting an official response from Google.
Update 2: ‘Bom Sabado’ is now trending on Google.
Update3:The Bom Sabado worm flooding scrapbooks and also it seems to be adding affected Orkuteers to new Orkut groups. Orkut Officials and Security Professionals advised users not to Log in Orkut until they clean the Worm. Orkut has updated it’s features 3 months and it’s not the first time Orkut got affected by this kind of Worms.
If you’ve logged into Orkut, Just clear you cache/cookies and change your Orkut password asap from
www.google.com/accounts. |
No comments:
Post a Comment