10:56 The worm in facebook «make me laugh now» | |
No matter how experienced and paranoid man, anyway generates some confidence in the services upon which never had any problems, spam and other troubles. Today I received a notification of new messages in Facebook: innocuous like, from the person experienced, so to say, reliable. Trick I did not notice (a reference to apps.facebook.com, suspicions arose not in any way), in a message especially not poring over, well, opened the link. Apparently he thought so, too, when that was. In general, as it turned out a new Internet worm, and it operates inside (!) In the form of applications. It is clear that we must be vigilant, apparently those who want to post a minus to me to convey just that, but here such as a unique case, since the application does not require any action by the user, and as it turned out, very massive. If you were such a letter - do not go to the application page! Open the link, and instantly become a peddler of infection. UPD Cervo application removed from the apps. I wonder how it will comment in Facebook, and comment is generally UPD2 A detailed analysis of the worm (eng): blog.kotowicz.net/2010/08/makemelaughnow-analysis-of-new.html Curiously enough, I recommend to read. If someone will translate it to be elegant at all. And here is the translation of podospel miguello. In a nutshell, the application will use loopholes mobile version touch.facebook.com, avoiding the security sandbox. Quote: "The lesson to be learned - do not forget about the mobile versions of your sites". To quote a post on facebookapps.ru: The user does not want to confirm access to the application, everything is done automatically, but for debriefing, I drew attention to the following information: Actually hackers figured the host from which it is possible to transfer any information to any users of social networks FB. I think that at this point in time it is not particularly dangerous worm, but later it will clone that can transmit the virus and links to other potentially hazardous sites Of course, this fixed a bug, if not already covered, though still see the angry messages on twitter and facebook itself, but the sediment remains and the credibility of the former Stock Exchange lost. | |
|
Total comments: 0 | |