Facebook Open for Attack
June 11, 2008 by Antivirus Ware.com - Download Norton Antivirus software instantly!
A recently discovered Facebook flaw may possibly lead to hackers hijacking user accounts. The flaw that was discovered would allow potential hackers to execute scripts on Facebook that create fraudulent log-in pages to capture user names and passwords.
Hackers can use this information to execute script code that looks like Facebook in and effort to obtain sensitive information from Facebook users including, clear text authentication credentials and fake log-in forms. The weakness in Facebook leaves users open to malware attacks in the complete hijacking of their Facebook page.
This cross site scripting weakness allows attackers to display information from one website or run a malicious code that can potentially compromise information on the website they are targeting. The practice of cross site scripting is becoming increasingly popular for hackers looking to exploit a site’s vulnerability. In fact, a study in 2006 found that more than 85 percent of websites are vulnerable to cross site scripting attacks.
Security experts warn that malware authors, spammers and scammers are devoting an increased amount of time on the exploitation of social networking sites. Facebook has been notified of the flaw in their system, but has not yet implemented a change in the system, so the flaw still remains a vulnerable point.
