Home / Virus News / Worms Infect Twitter
 
Worms Infect Twitter PDF Print E-mail

This weekend has seen the popular social media site Twitter infected by several worms. Fortunately the technical team at Twitter were on the ball, were able to stop these attacks from progressing too far and have now plugged the vulnerabilities that these attacks exploited.

Both attacks used a technique known as “cross site scripting” (XSS). The perpetrators of the worms discovered that you could put Javascript code into the “Bio” section of a Twitter account. Anyone then visiting the home page of that account would activate the Javascript which would, in turn, infect the visitors account. Thus the worm was able to spread from one account to another.

The first attack occurred on Saturday 11th April. This worm infected Twitter accounts and then started sending spam posts to the StalkDaily web site. Twitter say that only 90 accounts were affected before they brought the situation under control.

The second attack happened the following day and was instigated by a 17 year old New Yorker called Mikey Mooney, who apparently perpetrated the attack because he was bored (I should have so much free time). This worm, known as “Mikeyy”, again perpetrated a XSS attack this time posting spam messages to Twitter itself. By the time the situation was brought under control some 10,000 spam Tweets had to be removed. More details of the how the attacks were perpetrated can be found on Mashable and the Twitter Blog

Fortunately these attacks were relatively benign and as such have shown Twitter where it needed to do some serious tightening of security. However the fact remains that security was breached and those people whose accounts were attacked are fortunate that the payload was nothing more serious than spam messages.

Whilst it’s very easy to criticise the Twitter team from afar XSS attacks have been around for some considerable time and so you have to ask the question, “Why were these vulnerabilities not foreseen?”. It also behoves each and every one of us to remain ever vigilant in our web activity and be alert to anything unusual happening.

One final point. These worms only affected Twitter users who viewed account details in a web browser. If you use a Twitter client like Tweetdeck, Twhirl or Seesmic Desktop then you won’t have been affected by the worm even if you visited an infected account.

Trackback(0)

TrackBack URI for this entry

Comments (7)

Subscribe to this comment's feed
...
update your wardrobe with tk shoes
Reese , 03 December 2009
...
Thank you for your article!A light heart lives long.Cheap Ugg Boots Early to Womenand early to rise, makes a discount ugg

boots

healthy, dior high boots wealthy and wise Sloth , like ed hardy rust, consumes faster than labor wears.uggs outlet life is the

art of drawing sufficient conclusions from insufficient premises.
ugg boots , 07 January 2010 | url
...
Like the ugg bailey button boots, the ugg classic tall boots a calf-height ugg boots made from genuine twin-face sheepskin. We've updated this traditional style with a wooden and elastic band closure. The Bailey Button can either be worn up or cuffed down adding a little ugg classic cardy variety depending on your style. UGG mini boots in our Classic Collection feature a soft foam insole covered uggs boots on sale with genuine sheepskin and have a molded EVA light and flexible outsole ugg classic short boots designed for amazing comfort with every step.
uggs outlet , 14 January 2010 | url
...
Good sharing!
I don’t know whethercheap uggyou can read this message, but I think I should ugg bootstell you something about my attitude for you! I am so grateful for your sharing.
ugg store , 17 January 2010 | url
...
Wearing MBT shoes provides many pro-body benefits: this is the result of an increasing number of international studies supporting the numerous health benefits of the "anti-shoe ". Here is a excited place-----discount MBT shoes
MBT lover , 22 February 2010 | url
...
MBT SHOES on Sale up to 50% off and you can get free gifts mbt on sale gone through a popular and unpopular fashion cycle, and now it is again leading the forefront role of fashion. You may surprisely found that mbt outlet have become the most comfortable and never out-of-date reserved single products
MBT lover , 04 March 2010 | url
...
"Love is not a thing to understand.
Love is not a thing to feel.
Love is not a thing cheap ed hardy to give and receive.
Love is a thing only to become
And eternally be. ."
cheap ed hardy , 12 March 2010 | url

Write comment

smaller | bigger
security image
Write the displayed characters

busy
 

Virus News



Subscribe to our Virus News using Feedburner and your favourite news reader:

Add to Google Reader or Homepage

Subscribe in NewsGator Online

Subscribe in Bloglines

Twitter Feed

David Hollingworth
Tullig
Ballinascarthy
Clonakilty
Co. Cork

Telephone: 021 234 8654
Mobile: 087 249 2841
EMail: info@ctswestcork.com
Skype: djhollingworth