digg

Facebook Connect Join Digg About

Hacked Ad Seen on MySpace Served Spyware to a Million

blog.washingtonpost.com "An online banner advertisement that ran on MySpace.com and other sites over the past week used a Windows security flaw to infect more than a million users with spyware when people merely browsed the sites with unpatched versions of Windows, according to data collected by iDefense, a Verisign company."

Who dugg this? Made popular Jul 19, 2006

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

100 Comments

show profanity settings
expand all
  • onebigword, on 10/12/2007, -3/+89So don't use IE, and don't go to MySpace?
  • vinbob, on 10/12/2007, -6/+59Headline should be changed to...

    Hacked ad on MySpace served spyware to a million... IE users
  • lolage, on 10/12/2007, -6/+45I dont know why but the article makes me smile inside.
  • hemphill81, on 10/12/2007, -0/+39Just so you know this is different from the swf problem they had. This one takes advantage of the wmf vulnerability the same one that Steve Gibson raised a big stink over. So if you are up to date on your windows security updates doesn't affect you.
  • hemphill81, on 10/12/2007, -2/+37Well I wouldn't recommend going to MySpace in general nor would I recommend using IE, but if you do choose to do such a thing make sure you have all the proper IE security updates.
  • prab, on 10/12/2007, -4/+31I may be wrong, but I think this vulnerability effects all browsers. You would get the infection through FF or Opera.
  • demonicume, on 10/12/2007, -1/+24firefox... check
    adblock + filterset... check
    noscript... check
    greasemonkey... check

    wait, did someone say something about a trojan?
  • hemphill81, on 10/12/2007, -2/+25@ prab

    That is correct. It is a windows vunlerability with wmf files.
  • avcabob, on 10/12/2007, -4/+22I too find this very entertaining, as most people who use myspace aren't the kind of people who keep their system up to date
  • hemphill81, on 10/12/2007, -2/+20Sorry all your proper windows updates this one in particular. MS06-001
  • lykathea, on 10/12/2007, -3/+21No, actually FireFox doesn't display wmf files by default and prompts you. I've experienced this first-hand.
  • scheper, on 10/12/2007, -0/+17Myspace the site isn't what sucks, it's the people who use it.

    Hacks like this take care of those users, in a beautiful form of digital evolution.

    Myspace is a great service to keep all those people away from the forums you frequent =)
  • jer2eydevil88, on 10/12/2007, -1/+17Skinny dipping in a pool filled with landmines.... thats the analogy of that decision.
  • scheper, on 10/12/2007, -0/+16The difference is that IE would download it *and* execute it automatically.
  • Norweed, on 10/12/2007, -9/+24One really lame attention whore website.

    Looks at me I've got 40 eleven friends.
  • scheper, on 10/12/2007, -1/+15Landmines in a pool don't seem very dangerous to me. Maybe sea mines would scare me a little more, but even then you'd have to bang them pretty hard to set them off.
  • shitthisfook, on 10/12/2007, -4/+16I am going to be honest. I don't HATE Myspace, I am jealous of how they have so many users and such a crappy site. What I want to see is a brand new Web 2.0 social site that has all the features you could ask for, and runs smoothly. No ads, clean layouts, no embedded *****, beter security, and entertainment. Is that too much to ask for?

    I pray for the demise of Myspace in the near future. Join me.
  • tzmguitarist, on 10/12/2007, -4/+16Does anyone really HAVE TO consciously try to keep their system up to date anymore? SP2 whines unless you allow it to set automatic updates to download and install on a schedule. I think it's a gross exaggeration and a blanket statement to say that people who "go to myspace.com" are the type that neglect their pc.
  • jer2eydevil88, on 10/12/2007, -5/+16If its true there were 1 million infections then this is practically a billboard sized advertisement for Microsofts failure of SP2 to secure Windows.
  • inactive, on 10/12/2007, -2/+13Hey! That's a million dollar idea right there. Do it before someone else does.
  • jlabs, on 10/12/2007, -0/+10I wonder how much money this spyware company made. Probably millions..
  • ThinkFr33ly, on 10/12/2007, -1/+10Heaven forbid they install a patch that's 7 months old.
  • mc900ftjesus, on 10/12/2007, -17/+26Yes, but Myspace is still a cesspool of stupid people built on ***** technology.

    "It's a good way to keep in touch," what from people that aren't worth actually calling? Great, now I have a way to keep track of people I don't actually want contact with.
  • SteveMax, on 10/12/2007, -2/+10Mozilla ASKED to download. IE would have downloaded it without warning, according to the article.
  • breakjobs, on 10/12/2007, -1/+9I think this is more a Windows/Microsoft issue than anything. It wasn't only MySpace, and wasn't only IE that was affected.
  • SteveMax, on 10/12/2007, -0/+8Sound more like going to that HIV dating site on the other FP article.
  • dasunst3r, on 10/12/2007, -0/+7I got this same issue while on Facebook, so I suppose that Facebook and MySpace use the same advertising vendor. There are actually TWO attack vectors: The WMF one AND the Microsoft Java Virtual Machine.

    I love the error that said "Sorry, your browser is not WIN32 compatible" (duh?)
  • zweben, on 10/12/2007, -4/+11Fortunately, I block ads, don't frequent MySpace, keep my security updates current and don't use Windows anyway. Hopefully some people will learn to do at least ONE of those things.
  • pumacub, on 10/12/2007, -8/+15Yea I know... "Omg! I'm so cool, I have 500 friends!"
  • furo, on 10/12/2007, -0/+7That's akin to taking Paris Hilton out for an oyster dinner with an ecstacy and viagra chaser. There aren't many good things that can follow.

    -Furo
  • furo, on 10/12/2007, -0/+7I honestly think that 80% of internet users will click any box that opens on their computer

    Frankly, that is Microsoft's doing by way of conditioning. Users have been trained to just click through the blizzard of prompts presented anytime you want to do something. This is one of the chief complaints with Vista, actually. Microsoft's changes in security result in many prompts to accomplish routine tasks. Again, users will not diligently consider what they're doing.

    It's like the fine print on paperwork we sign every day... people by and large assume they'll be fine and sign away. The experienced among us don't let ourselves be taken in so easily, but we are in the minority.

    -Furo
  • verifex, on 10/12/2007, -8/+14I'm telling you, letting users put full-fledged HTML on their own page spells disaster for MySpace. I wonder what the next hack will be?
  • bking, on 10/12/2007, -2/+8I have a mac, and I can relate... but the caps and the "3" are why I dug you down. Way to make us look like idiots.
  • damentz, on 10/12/2007, -0/+6@tykathea: The same thing with opera, it asked me to download this wmf and i was like f**k that and went to digg.com
  • hemphill81, on 10/12/2007, -1/+6@lykathea
    Sorry my mistake I thought about that after posted the comment.
  • KJay, on 10/12/2007, -0/+5Some spammer is going to have a good fiscal quarter...

    @tzmguitarist
    Not if you followed the earlier front page story to turn those windows processes off :-p
  • ThinkFr33ly, on 10/12/2007, -0/+5You are incorrect. On an unpatched machine, WMFs were displayed directly in the browser window. If the WMF contained the exploit it would then run code on the machine with the permissions of the current user.

    The fact that 1 million+ users were infected only shows that people don't patch. All the more reason for Windows to *automatically patch* by default. You should be able to turn it off manually or via group policy, but by default it should be on for this very reason.
  • rYno, on 10/12/2007, -0/+5http://subjectivecriticism.com/2006/07/another-reason-to-quit-using-internet-explorer/
  • Haroldx, on 10/12/2007, -7/+11i saw the exploit. i was going on my friend page and all of a sudden it showed a .wmf downloading. i was like, huh? thank god i ditched windows aty the beginning of the year. i love tux :D

    anyways, i looked at the source of her page and didn't see anything. i guess that explains why it was from an ad.
  • redxii, on 10/12/2007, -0/+4"If the WMF contained the exploit it would then run code on the machine with the permissions of the current user."

    What would that be, administrator privileges? For most people, but not me.
  • digitaldivider, on 10/12/2007, -1/+5notice the headline says unpatched versions of windows? A little bit of common sense goes a long way.
  • inactive, on 10/12/2007, -1/+5@msprout

    i don't believe it is their lack of computer skills that people classify them as dumb. i have a myspace account, and yes, most of the people are quite dumb.

    there are however certain advantages to myspace. such as the ability to see who you are talking to, and meet new people through your friends. yes, i realise that it is possible to meet people through friends in real life (as i do as well). but people are not always hanging out with all of their friends at once. with myspace, you could see a comment that someone posted on a friend's page realise that you have something in common and talk to said person. you'd have to use it to see the benifits. i myself used to hate myspace. though i should say that it helps to have friends already who use it ;)
  • apeatling, on 10/12/2007, -0/+4"I honestly think that 80% of internet users will click any box that opens on their computer"

    - Agreed, I think this is a real problem, people get so used to seeing boxes and clicking yes within their OS, that they just assume it's okay to click yes to everything. Whats the answer though... people I'm sure would still do the same even if they looked different.
  • dasunst3r, on 10/12/2007, -0/+4I was tracking this while surfing on Facebook, and I have logged THREE different IP addresses. A whois on nic.com to each of them indicate that they are US servers.
  • whiterajah, on 10/12/2007, -0/+4"Michael La Pilla, an iDefense "malcode" analyst, said he first spotted the attack Sunday while browsing MySpace on a Linux-based machine."

    Hmmm.... wonder what he was doing browsing MySpace...
  • MyDigitalSin, on 10/12/2007, -0/+3yeah you'll get the spyware if you're retarded enough to click to d/l it
    idiots.
  • Haroldx, on 10/12/2007, -0/+3it's not limited just to spyware
  • inactive, on 10/12/2007, -1/+4Firefox + Adblock + Spywareblaster + avast = No Worries...be happy :)
  • lumbergh, on 10/12/2007, -1/+4Actually I think it's PWNT!!! these days.

    I really hope Windows sinks like the Titanic someday. The sooner the better, because that certifiable monopoly kills competition and you consumers don't even realize what you might be missing in the "ideal IT world" with 50/50 (or even 30/30/40, or hell even 70/30) marketshare.
  • Fetching more discussions...
    Show 51 - 100 of 100 discussions

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...

© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.