Twitter Gets Slammed By the StalkDaily XSS Worm
CurtMonash writes "Twitter was hit Saturday by a worm that caused victims' accounts to tweet favorably about the StalkDaily website. Infection occurred when one went to the profile page of a compromised account, and was largely spread by the kind of follower spam more commonly used by multi-level marketers. Apparently the worm was an XSS attack, exploiting a vulnerability created in a recent Twitter update that introduced support for OAuth, and it was created by the 17-year-old owner of the StalkDaily website. More information can be found in the comment thread to a Network World post I put up detailing the attack, or in the post itself. By evening, Twitter claimed to have closed the security hole."
Me neither. One of the kids asked me about getting an account. He tried to explain the system. All I could think was, "How freaking GAY!" Myspace all over again, right?
"Windows is like the faint smell of piss in a subway: it's there, and there's nothing you can do about it." - Charlie Br
I'm glad this happened.
So this kid is apparently trying to launch his own version of Twitter at StalkDaily. To do this he launches a worm infecting Twitter users to drive traffic to his site, and then admits to it. Great way to build good will with your users.
Just so everyone knows, most teenage nerds are this stupid/unethical.
A Magic the Gathering Article and Forum Aggregator
Age? You can be an old bastard, and gay. You can be a young bastard, and gay. Gay is as gay does. The social pages on the internet are pretty damned gay. The same people who can't decide on which loaf of bread to buy in the grocery store without calling home can be found posting their mindless drivel on those social network pages. Probably doing so while they watch American Idol, and the idiotic reality TV shows.