Users of Sina Weibo, the Chinese Twitter alternative, were targeted by a cross-site scripting (XSS) worm spreading through a vulnerability on the microblogging site.With over 140 million users, Sina Weibo is the most popular social networking site in China, a country where both Twitter and Facebook are banned.The sit... |
1 July 2011
07:13 GMT |
 |
|
A Facebook cross-site scripting (XSS) vulnerability was used to launch a self-propagating spam worm on the social network, according to security researchers from Symantec.The XSS vulnerability was located in the Facebook mobile API and was caused by insufficient JavaScript validation.In order to exploit it, attackers... |
30 March 2011
03:30 GMT |
|
|
A cross-site scripting vulnerability was exploited Saturday on Orkut to launch a fast-spreading worm that auto-posted a rogue message reading "Bom Sabado" on people's scrapbooks."Bom Sabado" means "Good Saturday" in Portuguese, which led some people to assume that the worm originated in Brazil, where Orkut has a... |
27 September 2010
08:08 GMT |
|
|
The extremely viral cross-site scripting (XSS) worm, that hit Twitter yesterday did not have a malicious component, but the attack itself was monetized by directing affected users to surveys.As most people are aware by now, Twitter was the subject of several XSS-based attacks yesterday. Some of them consisted of simp... |
22 September 2010
03:25 GMT |
|
|
A newly discovered Twitter cross-site scripting vulnerability has been used to create an XSS worm that forces users to re-post hidden code by simply rolling the mouse over it.The vulnerability appears to stem from the way Twitter parses links that contain the @ character, which has special meaning on the micro-bloggi... |
21 September 2010
08:50 GMT |
|
|
A new cross-site scripting (XSS) weakness identified on Twitter and can be leveraged by attackers to hijack users' sessions and post on their behalf.According to a report from the XSSed Project, the vulnerability is located in the search script on dev.twitter.com and was discovered by a researcher calling himsel... |
6 September 2010
13:15 GMT |
|
|
Reddit was hit yesterday by an out of control XSS worm, which someone launched as a proof of concept. The website administrators moved swiftly to stop the attack and inform the public, thus earning the appreciation of the security community.Reddit is a social news and social bookmarking website that allows users to p... |
29 September 2009
05:44 GMT |
|
|
Find us on Google+
