A recent spate of web worms, representing a new generation of more sophisticated computer worms ever, have been detected on social networking websites such as MySpace, which are brought about to commit theft of data. Earlier types of the computer threats identified as “worms” were potentially brought about for generating havoc or were developed for proof-of-concept purposes to verify if flaws was able to be exploited.
However, these new-fangled worms make use of cross-site scripting (XSS) vulnerability discovered on several websites. XSS has been classified on the Whatis.com website in terms of a security exploit wherein the hacker slots pernicious codes into a link that seems to have been sent by a reliable source. When the link is clicked by a user, the inserted programming is put forward as part of that user’s web request and can affect on the computer of a user, naturally enabling the hacker to commit theft of info.
