UPDATED 12/2/06 - IMPORTANT: MySpace Hack Found Last Night

[AndrewCCM]

Check and see if this is happening.

1) Click "View my profile"

2) Then, with your mouse, 'hover' of the "Home" link. Look at the bottom of your browser. If it says anything other than "http://home.myspace.com/........" then do NOT click that link. You'll be asked for your password. Most likely, that web site is "logging" your user and password.

After discovering this, I notified MySpace. Although I heard nothing back, I dug around in my profile (Edited) and found some added JavaScript in various places that caused the normal MySpace banner at the top to be written over with bogus links to a Phishing site.

If you find anything like this, I'd recommend removing the code, saving your profile and immediately changing your password. Also, if you happen to use this username and password elsewhere, I'd recommend changing those immediately as well.

I just wanted to make everyone aware of it.

Thanks!

Andrew

[AndrewCCM]

Here is a copy of the code... Although the URLs differ slightly profile to profile... All seem to point to LOGIN.HTML somewhere in the URL though...

<div style="z-index: 5; background-color: rgb(102, 152, 203); margin-left: -400px; width: 800px;" class="testnav" align="center"><div style=""><a href="http://www.cake.fi/images/login.html" target="" class="navbar">Home</a> | <a href="http://www.cake.fi/images/login.html" target="" class="navbar">Browse</a> | <a href="http://www.cake.fi/images/login.html" target="" class="navbar">Search</a> | <a href="http://www.cake.fi/images/login.html" target="" class="navbar">Invite</a> | <a href="http://www.cake.fi/images/login.html" target="" class="navbar">Film</a> | <a href="http://www.cake.fi/images/login.html" target="" class="navbar">Mail</a> | <a href="http://www.cake.fi/images/login.html" target="" class="navbar">Blog</a> | <a href="http://www.cake.fi/images/login.html" target="" class="navbar">Favorites</a> | <a href="http://www.cake.fi/images/login.html" target="" class="navbar">Forum</a> | <a href="http://www.cake.fi/images/login.html" target="" class="navbar">Groups</a> | <a href="http://www.cake.fi/images/login.html" target="" class="navbar">Events</a> | <a href="http://www.cake.fi/images/login.html" target="" class="navbar">Videos</a> | <a href="http://www.cake.fi/images/login.html" target="" class="navbar">Music</a> | <a href="http://www.cake.fi/images/login.html" target="" class="navbar">Comedy</a> | <a href="http://www.cake.fi/images/login.html" target="" class="navbar">Classifieds</a></div></div>
</div>

[Michelle Allmon]

bastards!

[AndrewCCM]

Quote:

Originally Posted by Michelle Allmon

bastards!

Yep and I went through my 107 "friends" and checked.. about 10% were infected with some derivative of this. I sent everyone that was an email and posted a bulletin.

I can't get my day job out of my system. I work in Information Security...Busy times.

[Crashoran]

When I clicked "home" once, it brought up a page I had never seen before that asked for my email and password. I quickly exited it

[AndrewCCM]

Quote:

Originally Posted by Crashoran

When I clicked "home" once, it brought up a page I had never seen before that asked for my email and password. I quickly exited it

If you're infected, everytime someone views your profile, the banner (HOME, BROWSE, etc) will be pointed at the phishing site. You'll have to clean up the Javascript in your profile or it'll continue to redirect viewers of your profile.

PITA

[tiffany]

what's myspace?

[iCe]

Quote:

Originally Posted by tiffany

what's myspace?

Depends on your personal criteria. For me it's an area that is about 6" - 8" away from me

[Bartman01]

Quote:

Originally Posted by tiffany

what's myspace?

It is probably the most poorly designed, visually horrendous pile of dung on the Internet.

But the kids like it.

Funny thing is that Rupert Murdoch just paid a TON of money of for it and:
The older kids are moving to Facebook when they go to college.
The high school kids are starting to do this too.
In general it is still popular but becoming 'less cool'.

[AndrewCCM]

Quote:

Originally Posted by Bartman01

It is probably the most poorly designed, visually horrendous pile of dung on the Internet.

But the kids like it.

Funny thing is that Rupert Murdoch just paid a TON of money of for it and:
The older kids are moving to Facebook when they go to college.
The high school kids are starting to do this too.
In general it is still popular but becoming 'less cool'.

And don't forget the most visited..

99% of the profiles there are very hard on the eyes that is for sure.

[Daniel Bates]

Yeah... facebook... so much easier on the eyes!

[DEMDeepEllumMusic]

Lot of Musicians and Comedians have shifted over to it since the pages can be personalized, heck even nightclubs/bars have their own pages up.
Easy way to let people know about upcoming events.
(Also some ladies of de evening also are on it )

[Citex]

Had the navbar hack on mine this morning, the url wasnt a complete one so it errored. home/...../images so I never could login and the navbar had a rectangle color box around it. Removed the code found in the "abpit me" part of my profile.

[Bartman01]

Quote:

Originally Posted by AndrewCCM

And don't forget the most visited..

I know. Was just trying to point out that 'big media' still don't get this whole Internet thing. MySpace is the latest in a string of popular social network sites. The main users are kids, and they have NO loyalty to a specific domain. It is still king right now, but R.M. just threw a pile of money at a domain that is just starting to show signs of most of its regular users pulling up stakes and moving on to a 'new and hip' place. The older kids are going to facebook, and the younger demographic that would replace them don't see it as 'cool' anymore. Part of the issue is that the 'old' people (businesses, parents, teachers, etc.) are moving it to try to market to them or keep tabs on them.

[brad]

Interesting... mine was not corrupted until I visited a page that was.


Have you reported your findings?