Bom Sabado virus in orkut – A big treat for orkut
Google’s social networking website Orkut has been attacked by virus called “Bom Sabado” on Saturday morning, which is a big treat for orkut . “Bom sabado” is a Portuguese world it means “Good Saturday” in English.
Bom Sabado is an orkut virus affecting profiles of many. Those who are affected by this virus are advised to change password and security question. Log out immediately and also clear the cookies and history.
Advertisement
Users are also advised not to open Orkut account until the problem solved. Orkut had just last month announced new updates to the website. It’s a second time Orkut got affected by this kind of viruses. The same virus has hit Orkut last Feb also.
A few hours back, the Bom Sabado virus seems to have started and now it is all over orkut scraps that spreading from friend to friends. It is an auto generated message which is filing your scrapebooks. The scraps come from the friend list and it comes just like any other normal orkut scraps. Users are also advised not to open such scraps. The bug is hitting your cookies and automatically sending messages to your friend list.
If anyone reads this scrap even in their profile, their cookies are also stoled and so they are also posting scrap automatically to their friend list same scrap as bomb something like.
Orkut officials have not clear yet that the Bom Sabado is a virus or not. In week, this is a second XSS attack on a social networking website. The popular microblogging website Twitter was also attacked by a computer worm created by Norwegian. Twitter was received an XSS exploit, the attack, which emerged and was shut down within hours Tuesday morning and involved a XSS flaw that allowed users to run JavaScript programs on other computers.
- So do not login to your orkut account,
- If you want to change password, use this link www.google.com/accounts/
Solutions:-
- Do not visit any profile on Orkut till this script is blocked
- Clear your cookies and cache right away and change your password and security question.
[UPDATES]
Users are getting scraps from their friends with the message "2008 vem ai… que ele comece mto bem para vc". Even if they try to read their scraps They can get hacked. There is an XSS (Cross site scripting) prevailing in the scrapbook, which allows the execution of malicious script, which can perform following actions,
- Stealing their cookies
- Logging them out and redirecting them to a fake page
- Logging them out and redirecting them to a page which automatically installs keylogger, viruses in their computer system
As soon as they read this scrap even in their profile, their cookies are also stolen and so they are also posting scrap automatically to their friend list same scrap as bomb something like the script is running on and also in status of profile their falg is coming. Status is automatically updated in some profile. It’s their flag of Brazil. So Google team is working on it.
Now you should do is,
Follow these steps:
1. Immediately change your password and security question {including secondary email and mobile number if they also got changed.) This will solve the problem.
2. Find out whether some communities have been joined automatically. If yes, do remove them.
3. If your account has been completely hacked, then click on this google.com/support/forum/p/orkut/thread?tid=39fa418ed1162078&hl=en” rel=”nofollow” target=”_blank”>url
Always remember these points:
Users are getting scraps from their friends with the message “2008 vem ai… que ele comece mto bem para vc”. Even if they try to read their scraps They can get hacked. There is an XSS (Cross site scripting) prevailing in the scrapbook, which allows the execution of malicious script, which can perform following actions,
- Stealing their cookies
- Logging them out and redirecting them to a fake page
- Logging them out and redirecting them to a page which automatically installs keylogger, viruses in their computer system
As soon as they read this scrap even in their profile, their cookies are also stolen and so they are also posting scrap automatically to their friend list same scrap as bomb something like the script is running on and also in status of profile their falg is coming. Status is automatically updated in some profile. It’s their flag of Brazil. So Google team is working on it.
Now you should do is,
Follow these steps:
1. Immediately change your password and security question {including secondary email and mobile number if they also got changed.) This will solve the problem.
2. Find out whether some communities have been joined automatically. If yes, do remove them.
3. If your account has been completely hacked, then click on this url
Always remember these points:
Related News
SOURCE:
