The duo that call themselves Mondo Armando and Müstaschio have kicked off their first month of MySpace vulnerabilities, with what they acknowledge as a slow start. The first problem, credited to mybeNi websecurity, involves URL spoofing where an attacker could build an official-looking MySpace page using MySpace's CSS editing features that's designed to solicit a person's log-in details. "Note, it's a pretty light one, seeing how today is Sunday, and we don't really expect the crack MySpace Security Squad to actually do a lot of code changes on Sunday. So, we went with one they probably don't care about, and isn't terribly dangerous on its own."
The hackers have said they picked MySpace for their project for its high number of users. The hackers have informed MySpace of the project, they said. MySpace has frequently been targeted by hackers since a single compromised account can open a door to potentially hundreds of thousands of other users, which can be targeted with spam or infected with malicious code.
News source: InfoWorld
3 Comments - Add comment