ghacks Technology News

Twitter patches porn site worm flaw

Twitter has today updated its website to patch a flaw that was allowing spammers to cause multiple pop-ups with links to porn websites.

The code has beens spread by worms and thousands of people around the world have been caught out.  The self-replicating worm exploited a cross scripting (XSS) vulnerability and used just a small amount of Javascript to automatically direct Twitter website users to another website.

The vulnerability appeared to users as a coloured block that users only had to mouse-over to activate.

It only affected people directly using the website Twitter.com and not other third-party software such as TweetDeck or applications on smartphones.

The worm was initially created by Magnus Holm who “”simply wanted to exploit the hole without doing any ‘real’ harm” according to BBC News.  “It started off as ‘ha, no way this is going to work’.”  The flaw was later identified by others however after he used it and was then used for more unwanted purposes.

Mr Holm said he’d seen the worm passed around in at least 200,000 tweets.

In April 2009 Twitter suffered another attack that spread links to a rival website.  Twitter security chief Bob Lord said today This issue is now resolved. We apologise to those who may have encountered it.”

Enjoyed the article?: Then sign-up for our free newsletter or RSS feed to kick off your day with the latest technology news and tips, or share the article with your friends and contacts on Facebook or Twitter.

Related Articles:

New Sex Worm spreads like it’s 1999
US Military Bans Removable Media To Stop Computer Worm
Infrastructure worm targets Iran
Who Really Uses Facebook & Twitter?
Twitter Starts Scanning Direct Links To Improve Security



About the Author:Mike Halsey is a Microsoft MVP for "Windows Expert". He is also the author of Troubleshooting Windows 7 Inside Out from Microsoft Press and the Windows 7 Power Users Guide, a how-to guide for non-technical Windows users on how to get the best out of Microsoft's new operating system, with step-by-step and quick guides. You can follow Mike on Facebook, Twitter or on his own website The Long Climb

Author: , Tuesday September 21, 2010 -
Tags:, , ,

Previous Post: Linux Live USB Creator

Next Post: New German, Swiss Identification Cards Not As Secure As Claimed

Click on the following link(s) to read more about Security

Responses so far:

  1. Lady Bouvier says:
    September 23, 2010 at 9:27 pm

    The two most influential people in the Twitter nation already overtaking all the world’s media output are both under 17 and don’t yet have any chest hair.
    Imagine what could happen once this generation hits college and starts to discover social activism…

    http://scallywagandvagabond.com/2010/09/australian-hacker-behind-worldwide-twitter-porn-chaos/

    Reply
  2. grow twitter followers says:
    November 19, 2010 at 4:47 pm

    Yes, I also fool with this worm with loads of unwanted popups. It’s happy to hear this news:-)

    Reply

Leave a Reply   Follow Ghacks   Subscribe To Comment Rss

Subscribe without commenting

 Ghacks Technology Newsletter 
Ghacks Daily Newsletter

Recent Posts

Follow This Blog

RSS Feeds
Google+ Page; Facebook Fan Page; Twitter




Popular Articles

Popular Searches

Popular Tags

Topics

Links

About Ghacks

Ghacks is a technology news blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular latest tech news sites on the Internet with five authors and regular contributions from freelance writers.

Services

Authors

Martin Brinkmann
Melanie Gross
Mike Halsey
Ryan D. Lang
Jack Wallen

© 2005-2012 Ghacks.net. All Rights Reserved. Privacy Policy - About Us