http://blog.bfccomputing.com/articles/2008/02/15/new-myspace-worm en-us 40 My God, It's Full of Source! <p>I got a comment on myspace with the text:</p> <pre><code>LOL you gotta see the new pics on her profile. </code></pre> <p>and a link to:</p> <pre><code>http://profile.myspace.com.index.cfm.fuseaction.user.viewprofile.friendid.518729090.cn/ </code></pre> <p>which is a domain in china, registered <a href="http://ewhois.cnnic.cn/whois?inputfield=value&amp;value=518729090.cn&amp;entity=domain&amp;vcinput=9750&amp;service=%2Fwhois">thusly</a>.</p> <p>It looks like the standard MySpace login page. Because MySpace is retarded and throws up login pages all the time at you, most users will assume this is valid. I assume at that point it steals your password and propagates the worm.</p> <p>Perhaps on some machines it installs malware as well?</p> <p>I&#8217;ll skip the pay-attention-to-your-URL&#8217;s preaching, and suggest that writing buggy webapps puts your users at risk by teaching them bad habits.</p> Fri, 15 Feb 2008 18:43:00 -0500 urn:uuid:d491bff0-8419-4fba-abe0-322c32e9d5fe Bill McGonigle http://blog.bfccomputing.com/articles/2008/02/15/new-myspace-worm Internet Security http://blog.bfccomputing.com/articles/trackback/4733