FRIHOSTFORUMSSEARCHFAQTOSBLOGSCOMPETITIONS
You are invited to Log in or Register a free Frihost Account!


You too may be the victim of this Virus





ankur209
If You're on Orkut-The social networking site then Your Account/profile must have been affected too with this Virus.
Actually Problem Started Today Everyone was getting a scrap today "Bom Sabado!" which is a portuguese word meaning "Good Satirday"...

It was just a javascript code that is gettin multiplied when a user logs into his profile and clicks on the scrapbook.10 other communities also gets added.


Google team is still trying to get the solution for it.Lets see what happens.
If u're too a victim of it,Post a reply here to know how to handle this problem. Twisted Evil
jdelfire
Do you any screenshots or links for this? looks interesting
ankur209
I don't have the screenshot but you can see the video itself demonstrating everything on Youtube.

Search for Bom Sabado..You'll get the video. Razz
dude_xyx
I haven't noticed it yet but thanks for the heads up.
FunDa
I have had a bunch of similar virus attacks on orkut and facebook over the past few years. But they are not spreading too much nowadays. They are being blocked early.

Thanks for the warning.
rjraaz
ankur209 wrote:
If You're on Orkut-The social networking site then Your Account/profile must have been affected too with this Virus.
Actually Problem Started Today Everyone was getting a scrap today "Bom Sabado!" which is a portuguese word meaning "Good Satirday"...

It was just a javascript code that is gettin multiplied when a user logs into his profile and clicks on the scrapbook.10 other communities also gets added.


Google team is still trying to get the solution for it.Lets see what happens.
If u're too a victim of it,Post a reply here to know how to handle this problem. Twisted Evil


I have read about this virus in some local newspaper last week but not get any enough about this virus after few searching i just stopped to query about.

It may seems interesting to be searched.
nivinjoy
The problem has been sorted out and all such scraps were removed by Google as fast as they could..!! The virus was considered to be very dangerous as they affected about 2 million accounts it seems..!!

See excerpts from a detailed report:


Quote:

Users are also advised not to open Orkut account until the problem solved. Orkut had just last month announced new updates to the website. It’s a second time Orkut got affected by this kind of viruses. The same virus has hit Orkut last Feb also.

A few hours back, the Bom Sabado virus seems to have started and now it is all over orkut scraps that spreading from friend to friends. It is an auto generated message which is filing your scrapebooks. The scraps come from the friend list and it comes just like any other normal orkut scraps. Users are also advised not to open such scraps. The bug is hitting your cookies and automatically sending messages to your friend list.

If anyone reads this scrap even in their profile, their cookies are also stoled and so they are also posting scrap automatically to their friend list same scrap as bomb something like.

Orkut officials have not clear yet that the Bom Sabado is a virus or not. In week, this is a second XSS attack on a social networking website. The popular microblogging website Twitter was also attacked by a computer worm created by Norwegian. Twitter was received an XSS exploit, the attack, which emerged and was shut down within hours Tuesday morning and involved a XSS flaw that allowed users to run JavaScript programs on other computers.

* So do not login to your orkut account,
* If you want to change password, use this link www.google.com/accounts/

Solutions:-

* Do not visit any profile on Orkut till this script is blocked
* Clear your cookies and cache right away and change your password and security question.



Users are getting scraps from their friends with the message “2008 vem ai… que ele comece mto bem para vc”. Even if they try to read their scraps They can get hacked. There is an XSS (Cross site scripting) prevailing in the scrapbook, which allows the execution of malicious script, which can perform following actions,

* Stealing their cookies
* Logging them out and redirecting them to a fake page
* Logging them out and redirecting them to a page which automatically installs keylogger, viruses in their computer system

As soon as they read this scrap even in their profile, their cookies are also stolen and so they are also posting scrap automatically to their friend list same scrap as bomb something like the script is running on and also in status of profile their falg is coming. Status is automatically updated in some profile. It’s their flag of Brazil. So Google team is working on it.
Now you should do is,

Follow these steps:

1. Immediately change your password and security question {including secondary email and mobile number if they also got changed.) This will solve the problem.

2. Find out whether some communities have been joined automatically. If yes, do remove them.

3. If your account has been completely hacked, then click on this url

Always remember these points:
# Don’t ever login to any site rather than www.orkut.com
# Don’t ever run any javascripts while logged into your orkut account
# Never use any flooder in your account
# Don’t ever share your password with anyone else and keep changing your password regularly.
# Don’t ever click suspicious link while logged into Orkut a/c. if you are curious you can copy the link and check them in
# other browser after cleaning it’s browser’s cookie and cache.
# Don’t ever install any suspicious script on greasemoneky and ALWAYS DIABLE THE GM before logging in to orkut.
# Do your mobile verification also, so that you can get back your a/c if hacker doesn’t change the mobile number there.
# http://www.orkut.co.in/Main#MobileSetupSettings
# Install a good Update Ant ivirus and Anti Key logger and keep your system free from Key loggers and backdoor trojans.
# Use Virtual Keyboard to enter your password for more securite. KIS 2010 provides it and there are many other V.
ankur209
Yes that was due to XSS(Cross Scripting Script).

Thanx for the information... Razz
Related topics
USB Problem
Frihost is running a big Scam !!!!!
Gateway Laptop Freeze Up
Files Pending To Be Written into the CD
Autorun & Thumbs
Do You Think That All Viruses will be Eliminated?
can a virus cause unrecoverable damage to HD?
HOW TO ENSURE THAT VIRUS DOES NOT SPREAD THRU YOUR ADDRESSBk
Protect your pc from new virus programs..
F. Nietzsche
Linux
Nyxem virus set to strike tonight
Linux Anti-virus
Must Read Article for Mac Virus paranoia
Reply to topic    Frihost Forum Index -> Computers -> Computer Problems and Support

FRIHOST HOME | FAQ | TOS | ABOUT US | CONTACT US | SITE MAP
© 2005-2011 Frihost, forums powered by phpBB.