Bom Sabado worm attack dismantling Orkut
Computer Viruses have always been a threat to the big social networking companies in the world and it is a still a very open war between the social networks and the hackers of the world and the hackers have once again shown that they hold the capability of dismantling even the best servers in the world by the recent attack on the Facebook and Twitter servers. Orkut became the latest victim to one of the biggest XSS worm (An XSS Worm, sometimes incorrectly referred to as a cross site scripting virus, is a malicious (or sometimes non-malicious) payload that propagates among visitors of a website in the attempt to progressively infect other visitors. They were first mentioned in relation to a cross site scripting vulnerability in hotmail. XSS Worms exploit a vulnerability known as cross site scripting (or XSS for short) within a website, normally infecting users whereas other users can be infected in a variety of ways depending on the vulnerability. Cross-site scripting vulnerabilities are commonly exploited in the form of worms on popular social or commercial websites, such as MySpace, Yahoo!, Orkut, Justin.tv, and Twitter.
These worms can be used for malicious intent, giving an attacker the basis to steal personal information, cookies, and other relevant data regarding the website or the infected visitor. In the case of the Samy worm, the largest known XSS worm, which infected over 1 million MySpace profiles in less than 20 hours, the virus’s author was sued and entered a plea agreement to a felony charge) attacks of the world when the “Bom Sabado” worm attacked the user streams of the company. The JavaScript file worm, infected user streams with a scrap with the text “Bom Sabado” and then automatically signed up those users for groups. Bom Sabado means ‘Good Saturday’ in Portuguese.
As Orkut currently has over 52 million active users worldwide and over 34 billion pageviews each month it’s no surprise that “Bom Sabado” (“Good Saturday”) is currently trending on Google. Neither Google nor Orkut have responded on the extent of the attack and probably they right now have more important works to handle than to comment on a virus attack. Most of the experts have advised the user to stay away from the site for now and Orkut have disabled creation on new topics on communities for the time being. The security people at Orkut are trying to fix the problem. For the time being the following are the advices that have been issued by Ghaffortabish.
1. DO NOT visit any profile on Orkut till this script is blocked ( More preciously DO NOT use Orkut till this is blocked, as you can get affected by Flash scraps posted on your SB too! )
2. Clear your cookies and cache right away and change your password and security question:
https://www.google.com/accounts/b/0/ManageAccount
3. Let your friends know about this script and make them aware of the situation. (It’s just an effort to minimize the damage).
The worm program is not a very complex one to understand and works pretty simply as well. When any one opens a Orkut page that is infected by this worm, a JavaScript will run automatically on that page. Your browser will be hanged for some minutes or seconds. That script will automatically join you some communities. After joining communities it will send scrap to your friends with text “Bom Sabado!” with a iFrame code which load that JavaScript again for your friends and they will join communities and send links to their friends.
So guys beware!!
Orkut attacked by ‘Bom Sabado’ worm:
Orkut worm Bom Sabado – How to keep away:
actuall me also don’t knw what is bom sabado…..but thanx man for giving the solution n info!! wen dis problem will get itz end ??????
Well my id was also attacked by BOM SABADO i was receiving some scraps having written BOM SABADO on it i was not able to understand that so i translated that it was Portuguese and its meaning was GOOD SATURDAY and by an co-incidence that day was saturday. i send same to you to my friends but later i was just searching about something on web then suddenly i read that ” orkut is being attacked by a virus named BOM SABADO. then i get that it was not a GOOD SATURDAY WISH IT WAS A VIRUS…..LOL.