My buddy PaperGhost just posted this:
Myspace Fake Profile Spammers: This Is How They Do It

It gives an overview of an odd MySpace spamming app that works in conjunction with files hosted on the net. The only thing I can imagine is that we got our hands on this thing early and it’s just a beta of sorts being sold to noobs. The coder is likely working towards making it so that he can infect systems with that garbage, so a botnet (your infected systems) can do his spamming for him…

Another interesting tidbit:
Based on some other files I saw on that url, it looks like the program works in conjunction with a proxy script…

Jim and James over at HotOrNot.com just made some major changes…

Just wanted to drop you a note to let you know that we’ve made HOTorNOT free! You no longer need to buy a star membership in order to write your double matches ;)

We’ve made a lot of changes to the site recently and much more is in the works. So if you haven’t been on in a while, log back in and check it out!

The free as in beer thing was inevitable with all the social networking sites now. The only surprise was that it didn’t happen sooner. The “lot of changes” line piqued my interest enough to log in to see what was up though. That’s where I found the huge surprise: a site finally managed to be less secure than MySpace. Seriously, it’s that bad. The new Hot or Not is wide open to massive spam campaigns, XSS worms, and all sorts of tomfoolery. It is nothing short of being the Script Kiddies and Spammers Paradise of the moment.

After giving myself a two minute self tour, this is what I discovered and was able to do:

The “lot of change” that opened the flood gates is their new “Super Profiles”. There’s nothing really super about them. They are just profile pages with some extremely basic social networking features. Just like in MySpace Land, the user customization is where it gets ugly.

continue reading "Hot or Not Revamped: Script Kiddies and Spammers Paradise"

Yesterday, a metric ton of MySpace accounts were infected with yet another worm. As I predicted ten days ago, it was accomplished via a QuickTime embed. Visiting the profile of anyone infected would cause the navigation links across the top of your profile (Home | Browse | Search | Invite | etc…) to be replaced by fake navigation links which all linked to a spoof MySpace login page via some basic CSS and HTML added to your “About Me” section. And, the QuickTime embed was added to one of your “Interests” sections to further propagate this worm / phishing attack. At a glance, this looked like nothing more than that: a worm being used to phish MySpace passwords.

continue reading "MySpace Worm: Phishing Accounts and Spreading Zango Porn"