Over the past few days, months and years, there has been upsurges of exploiting vulnerabilities in websites or the famous firms’ software.



This may be the latest category of malware alarming sign for popular websites. Recently, the latest category of malware called Web Application Worms have been noticed active enough increasingly targeting Social Networking sites by exploiting unrelenting Cross Site Scripting (XSS) vulnerabilities in websites.Beware of it!



Two such worms- the Samy worm in October last year and last week’s Flash worm- have already hit MySpace. Samy was designed by a programmer who quested to be popular on MySpace. That is why he developed the worm to infiltrate via the site while adding people to his friends list furiously. To be taken aback, the maker of the worm was able to develop over a million Friends in a couple of hours.



Whereas, on the other hand, last week discovered worm misused vulnerability in Macromedia Flash to redirect MySpace users to an offensive webpage. In the same previous week, MySpace had been the victim of a pernicious banner ad that ran on the site, making use of the WMF vulnerability in Windows to spread adware to over a million users with unpatched machines.



Read