“We are currently addressing a new manifestation of the worm attack.
No passwords, phone numbers, or other sensitive information were compromised as part of this renewed attack.”
Mikeyy described how he carried out the attack:
“I am the person who coded the XSS which then acted as a worm when it auto updated a users profile and status, which then infected other users who viewed their profile. I did this out of boredom, to be honest. I usually like to find vulnerabilities within websites and try not to cause too much damage, but start a worm or something to give the developers an insight on the problem and while doing so, promoting myself or my website.”
truly, idle hands are the devil’s tools!
more @ [bnonews.com]
image c/o [cartoonstock.com]