Write at HWS !!!

Guest Posting

How secure is your Computer ?

Check out your computer safety here . A lot of tools , tricks and hacks related to computer .

Blogger Tips and Tricks

A Lot of tips ,tricks and hacks related to blogger . Seo tricks to get maximum targetted traffic to your blog.

Easy ways to Earn Online

Online earning is not so difficult but it needs a lot of patience and hardwork. Here are some techniques to earn money through internet.

Facebook Tricks

A lot of facebook tips , tricks and hacks.It requires a lot of time but reading is must.

Pro Hacking

If you have knowledge about basic techniques then try this,but be careful as it is highly toxic.

Showing newest 13 of 32 posts from September 2010. Show older posts
Showing newest 13 of 32 posts from September 2010. Show older posts

Thursday, September 30, 2010

Find ADMIN page of sites


HERE I WIL TELL DAT HOW V CAN GET ADMIN PAGE OF MANY SITES.FOR DAT YEW NEED SUM STUFFS.

FOLLOW THESE INSTRUCTIONS


NOTE :: U HAVE TO DOWNLOAD BOTH D FILES

  •  ENTER THE WEBSITE U WANTED TO SCAN THEN HIT ENTER 
  • THEN ENTER D CODING OF D SITE 
  • IF U DONT KNO D CODING OF D SITE DEN TYPE ANY
  • DEN IT STARTS SCANNING D SITE 
  • WHEN D LOGIN PAGE IS FETCHED 
  • A SUCESS MESSAGE IS DISPLAYED


N NOW ITS OVER ..... Enjoy
 






Techlotips My New blog Launched

Hi readers I am very please to announce you that I have just launched my new blog www.techlotips.com, This is the first time that I am blogging on a self hosted wordpress blog, Currently I am working on improving its design and optimizing it for search engines,I am using an Arthemia Premium theme by color labs project on this blog which is highly professional and seo optimized theme,  In this blog I will write on following categories and topics!
1.IPhone Jailbreaking
2.PS Jailbreaking
3.Free Premium Themes 
4.Search engine optimization
5.Getting Traffic to your blog

and much more!

I am looking for some guest posters too, If you have any suggestions regarding my new blog kindly tell me






Wednesday, September 29, 2010

Change your IP in less than 30 seconds

The following is a guide on how to change your IP in 30 seconds or less. This can be used if your IP has been banned from a game server, or on gunbound if your IP get's blocked. I've tried this on both Windows XP and Windows 2000, and it has worked:

1. Click on "Start" in the bottom left hand corner of screen
2. Click on "Run"
3. Type in "command" and hit ok

You should now be at an MSDOS prompt screen.

4. Type "ipconfig /release" just like that, and hit "enter"
5. Type "exit" and leave the prompt
6. Right-click on "Network Places" or "My Network Places" on your desktop.
7. Click on "properties"

You should now be on a screen with something titled "Local Area Connection", or something close to that, and, if you have a network hooked up, all of your other networks.

8. Right click on "Local Area Connection" and click "properties"
9. Double-click on the "Internet Protocol (TCP/IP)" from the list under the "General" tab
10. Click on "Use the following IP address" under the "General" tab
11. Create an IP address (It doesn't matter what it is. I just type 1 and 2 until i fill the area up).
12. Press "Tab" and it should automatically fill in the "Subnet Mask" section with default numbers.
13. Hit the "Ok" button here
14. Hit the "Ok" button again

You should now be back to the "Local Area Connection" screen.

15. Right-click back on "Local Area Connection" and go to properties again.
16. Go back to the "TCP/IP" settings
17. This time, select "Obtain an IP address automatically"
18. Hit "Ok"
19. Hit "Ok" again
20. You now have a new IP address



*Note* This only changes your dynamic IP address, not your ISP/IP address. If you plan on hacking a website with this trick be extremely careful, because if they try a little, they can trace it back.








Side Jacking - Hack accounts on LAN or Wifi

Sidejacking is the process of sniffing cookie information, then replaying them against websites in order to clone a victim’s session. We use the term “sidejacking” to distinguish this technique from man-in-the-middle hijacking(Cain and Abel). Whereas man-in-the-middle hijacking interferes with the original session, sidejacking does not. The victim continues to use his/her session blissfully unaware that we are also in his/her account (although signs such as additional e-mails in the ‘sent’ folders might give a clue).

In this tut, I will explain the process of side jacking thru various tools with special focus on Hamster and Ferret
Disclaimer: Only for educational purposes

Contents:
I. SideJacking without hamster
-Ethereal/Wireshark, Cain And Abel, Network Miner

II SideJAcking with Hamster and Ferret
-Preparation
-Starting Up
-Using the console 


I. Sidejacking without Hamster

All you need to do in order to sidejack is sniff cookies off the wire and edit cookies. This can be done with a wide variety of tools.

You should be comfortable with using a packet-sniffer like Wireshark/Ethereal. For example, the following is a screenshot of sniffing the cookie for Slashdot:

Another useful tool is an extension for Firefox called “Edit Cookies”. The following screens show what it looks like:

 Once you can make your cookies the same in the browser that you sniffed from the wire, then you have sidejacked the person’s session. Note that the above information is correct, so that you can successfully sidejack our Slashdot test

You can use this erethreal method, another method can be using cain and abel, network miner and cookie editor which you can read here -> http://tinypaste.com/2b87c2
I am avoiding pasting that part here to focus on hamster and ferret. 


II. Sidejacking without hamster and ferret

Now as you saw above the above process was quite cumbersome, especially if u want to repeatedly attack different users this would take a lot of time, to delete old cookies, try new ones and check. Also reading the erethreal dump is not easy hence, hamster is our wizard. So starting with it---> 

Part A: Setting UP

Download HAmster and Ferret tools Here
http://rapidshare.com/files/381668823/ha
m.rar
These are command line tools, but for those afraid of command line, dont worry, u wont have to do much.
Unzio these into a directory that u can goto easily e.g. C:\hamster

Note:There is one major problem with the Intel® PRO/Wireless 2200BG and some other intel adapters: it doesn’t do promiscuous mode. This means that unlike most other wifi adapters, you can’t use it for sidejacking. To get around this, you would need to buy a cheap USB wifi adapter (usually 1000 rs)

First step is to set you’re a browser’s proxy to Hamster, which will be on port 3128. I strongly recommend that you DON’T use your normal browser, because Hamster totally screws up the cookies in the browser. There are 3 options I have used:
1. used Internet Explorer for sidejacking, because Firefox is my default browser
2. created a second account called “hamster” on my computer, and did the browsing from that account
3. used the alternate “profile” feature of Firefox to have two profiles running at the same time

I'll explain the third step in detail now--> 
Firefox allows two profiles to be running at the same time. You can launch them from the command line as follows:


You will have to use these at c:\Program Files\Mozilla Firefox\
The following screen will popup



Click on create profile, select any name.. Next tym u start mozilla use that one for hamster.
Now open your created profile inn Firefox, go to the [Tools / Options] menu. Select the [advanced] Tab, open Network tab under it. Under connections click on settings. Now set up as following:


Set your proxy as shown and click ok.  

Part B. Starting Up

To run Ferret, open command prompt ( In administrator mode is better):
Goto ferret directory (C:\ham for e.g) and type ferret-W.



Now choose your wifi or LAN interface (u can try using the company names or try again)
Now type ferret.exe -i to start sniffing cookies
e.g ferret -i 4 for above one

Note(Only for those who understand):
You might also want to capture packets at the same time:

ferret.exe -i 4 sniffer.mode=most sniffer.directory=\pcaps

The advantage of sniffing packets at the same time is that you can later replay them through Ferret in order to generate a hamster.txt. The cookies last for a long time. To run a packet capture, do something like:


ferret -r \pcaps\sniff-2007-08-04-eth.pcap 
Open another command prompt without closing the previous one ( Run as Administrator necessary)
Go to hamster directory(C:\ham for e.g.)
type 'hamster' and enter to start hamster proxy.
Now if you have already done the browser configuration as above move on to next part.
else set the browser proxy to 127.0.0.1 port 3128.  

Part C. Using it!!

Open your configure browser and got to http://hamster/ remember NO . com or www in the name.
(If you get server not found, you didnt set proxy correctly or you didnt start hamster in cmd)
Now u get this


As Ferret is running in the background, it will be updating this list. You’ll need to manually refresh it to see if any information has been added.

In the right-hand window, you’ll get a list of targets. Most targets will have just the IP address. Some will have additional identifying information that Ferret finds. This identifying information is only names associated with the IP address, it’s not cookie information.

When you click on an IP address, you “clone” it. At this point, all the cookie are set for that IP address. Keep that in mind - a lot of problems people have is because they set the current IP address to something else, thereby erasing the cookies of a site they want to access.

Cloning an IP address by clicking on it will cause the window to the left to be filled in, as in the following example:


You have three options here. You can view the raw cookies for this IP address (discussed below). You can click on a URL that has a HIGHER probability of being Sidejacked. Or you can choose from the URLs below, which have a lower probability of being Sidejacked.

At this point, just click the URL. For example, I clicked on the http://slashdot.org URL in the above example, and the following window popped up:


The name “sidejacking” in the mid-left of that screenshot is because I created a test account with the username of “sidejacking”. This shows how I’ve successfully cloned the cookies to get to that Slashdot account.

Clicking on the Gmail one, I get the following screen:


And here is the Facebook account:


FootNotes:

When things work well, its point-and-click. They don’t always work well.

The first thing that sucks is you have to figure out which interface to sniff on and make sure that you have a proper wifi adapter. I recommend downloading Wireshark and make sure that you’ve got the packet sniffing working with that product before you start Ferret.

Both Ferret and Hamster will crash or hang. You’ll be restarting the programs a lot. Right now, Ferret overwrites ‘hamster.txt’ every time it restarts, so if you’ve got a good session, make copies of it (or log to sniffer files, and recreate it).

The Hamster proxy is really slow. You’ll click on a link and have to wait patiently sometimes. Check the Hamster console window in order to see what’s going on.

Cloning sites is finicky. Sometimes you have to choose the right URL from the list, and choosing the wrong URL will cause the server to reset the cookies, locking you (and the original person) out from the account until a re-login. It takes practice to figure out what you can, and cannot, clone.

Finally, when the original session cookies expire, you can’t clone them. This is rarely a problem in a live environment, but if you work from capture files, it becomes more difficult.

Completed!!

That is all you gotta know... Now u can try messing up your wifi or LAN network, also works in some broadbands and internet connections like airtel.
Comments andqueries are welcome.
Thanks!!
Credits: Hamster Creator himself (I used his Help file along with my editing).

And The content in tinypaste part is from HF







Hack your desired PC on LAN




i think there are already many tut on lan hacking but i found this tut .... its really nice .... so i decided to share it with u all.

Hacking Computer Inside LAN Network


This technique will be taking advantage of Port 139.

Most of the time,Port 139 will be opened.

First of all,I will do a port scanning at the target computer which is 192.168.40.128.

This computer is inside my LAN network.

scan it using Nmap.




I get the result and it shows Port 139 is opened up for me.

Now you will need both of these tools:
** USER2SID & SID2USER
** NetBios Auditing Tool

You can get both of them on the Internet.

After you get both of them,put them in the C: directory.


 
You now need to create a null session to the target computer.




Now open the Command Prompt and browse to the USER2SID & SID2USER folder.There will be 2 tools inside it,one will be USER2SID and another one will be SID2USER.

We will first using USER2SID to get the ID.





We will test against the Guest account because Guest account is a built in account.

After we get the ID,we need to do some modification on the ID.

We take the ID we get from the guest account and modified it become
"5 21 861567501 1383384898 839522115 500".

Please leave out the S-1-,leave out all the - too.



Now you will see that you get the username of the Administrator account.

In this case,the Administrator account is Administrator.

Create a text file called user.txt and the content will be the username of the Admin account.




Prepare yourself a good wordlist.




Now put both of them in the same directory with the NetBios Auditing Tool.



MAIN PART

Now we are going to crack the Admin account for the password in order to access to the target computer.

Browse to the NetBios Auditing Tool directory.




Press on enter and the tool will run through the passlist.




In this case,I have get the password.

In order to proof that I can get access to the target computer using this password.



After you press enter,it will prompt you for the username and password.





Therefore,just input them inside the prompt and continue.




Target C drive will be on your screen.




In order to prevent from this attack,close down port that you do not want to use such as Port 135,Port 136,Port 137,Port 138 and Port 139.

CLICK HERE to download Software .










Earn money thru data entry jobs

Herez a new site for earning online by data Entry ..... New one so Working fine .... Join it and refer members ..... their payment criteria is two times a month . CLICK HERE to join .....







[TUT] Hack Adsense & get unlimited Clicks

If You Are Thinking That This Hack Is About Getting The Passes Of The Adsense Accounts, Then You Are Wrong

This Is About How To Get Unlimited Impressions And Ads Clicks Without Working For Even A Second



Get traffic into your site, NOW!

Wanna more traffic? YES, YOU CAN!

Need any investment? NO!

What do I have to do?

Nothing but keeps your computer ON.

Is that EASY? If you believe, IT IS.
Okay. Let us start doing this. As I am a web master as well, I

used to buy traffic from others in order to increase my

website popularity. However, it doesn’t seem to be working

well as it doesn’t do much on the search engine bit and

most of them are either fake traffic or too expensive for me.

But here, today, I am introducing you a BRAND NEW

method that you should KNOW to increase traffic for your

site. You don’t have to have any skill or experience, just

follow my step you will walk into SUCCESS. You can do this

to your site, or you can even SELL traffic to others.

Site requirement in order to receive traffic:

‐ Less than 100kb (Will show you how to check)

‐ No Porn content included (On that page)

‐ No Virus/Malware

‐ No Fancy JavaScript (Those who slow the browser)

So how do I check my page size?

It is easy, open up your IE or FireFox. Press �"Ctrl+S�" or Files�->Save As and choose FULL WEB PAGE. Save it

anywhere you want and go to that location. Select the

folder and the html page and Right click�->Properties. Look

at their disk size and make sure they are under 100KB.

(Otherwise it MAY NOT WORK!)
What do I do NEXT?

Get into this site and register with them: http://tinyurl.com/ccg4o2

Oh shit, they are in Chinese! Don’t worry, Just follow me.

When you enter the homepage, click on the highlighted link.





Then Follow This


  

Download the RAR File and Unrar it..



Now we have to set up your site in their index.




You are ALL DONE. Remember to run the software every time you

turn your computer on and it wills GENERATE UNLIMITED TRAFFIC

to your site. Thank you.



*If you have two computer (on different IP), you can use the

software with same username to increase traffic.

If You Don not Believe This Then I Am Giving You My Words

I Have Been Using It For MANY Days

I Am Earning Sometimes Above $10 And Some Times 2 or 3

My Account Has Not Been Blocked So That Means It Is Safe To Use

Enjoy!!!






Click Exchange Program for Adsense

Hello friends , this tutorial is for those guys who has already created an account on adsense. If you haven't created the account on adsense yet then check this topic EARN ONLINE WITH ADSENSE .Moreover herez a trick for creating adsense account in few days .Approve adsense account in few days .Try it too for adsense approval.Anyways now come to the main tutorial. In this tutorial i m showing u that how can u increase your earning on google thru click exchange program.

What is Click Exchange Program ?

Its simple ,google doesnt allow u to click on ur own ads ..... so herez the solution u click on someone else blog and in return he will click on ur blog ..... but remember take much much care while doing so ..... if u do click exchange with just one person then google will disable u ....

Now read it carefully :

Now This Is The Most Important Part Of The Work Becoz If You Dont Work Properly Then Members Wont WOrk With YOu Again So Understand It Completely
  • MAke A Yahoo ID And Sign In Yahoo Messanger . 
  • Now post ur yahoo account here and add the other yahoo accounts posted here. 
  • After YOu Add The Members You See Different Messages Coming "free For Clicks". 
  • This Means Members Want To Work .

How To Work??


  • Before Start Working You Have To Understand Few Things 
              1. Ads
              2. Impressions ( imp )
              3. Bps
  • Members Will Work With Request Or Ask You To Req To Start Work
  • Request Will Be Like This Most Of The Time 3 Ads 30 imp 3 bps.
  • That Means You Have To Open Three Ads On The Blog Of That Member, refresh The Blog 30 times And Open 3 subpages On Each of The Add You Just Opened.
  • So In The Meanwhile The Member Will Do The Same For You.
  • How To Know That Others Are Not Cheating And Doing Your Work While You Are Doing His WOrk???
  • Counter Is For That Purpose Becoz IMP Are Counted By The Counter , When The Member Refreshes Your Page Your Counter Ticks So YOu Will KNow That The Member Is Working.
  • About Add And Bps For This There Is Another Solution.
  • When You Open An Add Eg: http//:www.forex.com/productsID66uhrguds55 
  • Copy And Paste The Add Link To The Other Member So That He Can Know What You Have Clicked On.
  • But Remember Donot Copy http And www Part Simply Copy From forex.com/productsID66uhrguds55 And Paste It.
  • Same Work With The Bps When YOu Open Bps In New Window Copy And Paste The Link And Send It To The Member.
  • This Way Cheating Is Avoided.

But remember :

  • Remember Never Click On YOur Own Add Becoz Your Account Will Be Closed Imediatly. 
  • 1st All Of The Users Here In This Community Start Working With Each Other To Practise The Method Of THe Work So That YOu DOnt Loose The Members.
  • If Anybody Form Gets Rejected Dont Worry Register Again With The Same Process.
  • On Forex Ads You Earn Almost 10 dollars On 25 Clicks On Ads.
  • That Means If 1 Members Click On Your 3 Ads 10 Members click On 30 Ads= 10+ Dollars.
  • If You Work With 10 Members In 1 Day It Means $10+ And 30 Days Means $300+.
  • And The More YOu WOrk The More YOu Earn.
 Having any problem can ask in the comments..... :))






Earn Online with adsense

Many People Here Wish To Earn Online But Most Of Them Are Just Fake Sites Which Provide Online Earning.Here Is A Simple And Easy Way To EARN MONEY ONLINE. Its Not About Increasing Your Referals To Earn Money Or Something Else. You Can Earn Through Google Every Day As Much As You can.

Google Is A World Wide Popular Website So They Wont Cheat You. What You Have To Do Is Simply Make A Site And Start Displaying Ads Provided By Google And You Will Start Earning. ..You have seen these ads on many sites like ads by google.In our site HWS you can see google ads above and below of all posts.
Many People Know About Google Adsense But Others Do Not Know So Its A Nice Method To Earn Online.For Those Who Dont Know About This Simply Follow These Steps And You Will Know How To Do This.

1st Step

  • Make A Gmail Id

2nd Step

  • Go To Blogger And Make A Blog On Forex. 
  • Collect Data On Your Blog About Forex. I Recomend Forex Becoz Forex Adds Can Earn You The Maximum.

3rd Step

  • After Making Your Blog Go To Adsense And Fill The Form For Registration.
  • Remember Give Your Complete Name And Adress And Correct Address Because You Recieve Checks And PIN Code At That Adress.
  • And Also Give Your Blog URL You Just Created.

4th Step

  • After A Week Or Before That You Will Be Registered By Adsense Then Go To Google.com/adsense And Activate Your Account.

5th Step

  • Go To Blogger And Sign In.
  • Open Your Blog And Click On Layout.
  • Click On Ad Gadget And Then Select HTML Script

6th Step

  • You Have To Put A Counter On That Blog , Advantage Of That Counter Will Be Known Later. 
  • Search On Google "Counter For Free" And You Will Get Many Site For Free Counter. 
  • Then Fill The Form Their And Copy The Code And Paste It In That Gadget OF HTML And Save It.
  • NOw You Will See A Counter On Your Blog As Well.

7th Step

  • Again Click On Layout>Add Gadget> Adsense. 
  • And Select The Type Of Banner You Want To Show Ads And Add Them Thats It. 
  • Save It And You Are Ready To Work Now.
  • Whoever clicks on ur ads u will get money

Note

  • Remember Never Click On YOur Own Add Becoz Your Account Will Be Closed Immediatly. 
  • If Anybody Form Gets Rejected Dont Worry Register Again With The Same Process.

Recommendations

Hope you guys like it and if you got your adsense account do let me know .... :))






Tuesday, September 28, 2010

Approve adsense account in few days

Adsense has become very careful in the approval of account specially in middle east countries like Pakistan ,India etc . Anyways we have found a trick for the adsense approval ...... herez the trick .

For Pakistanis

If u are feeling problem in aproving your account then do the following steps during registration on adsense but remember before apply ur blog must have atleast 10 topics,just copy paste material from net .....
  • Put your city : quetta

  • Country name : pakistan

  • Adress : write any adress

  • Phone no : write any mob no

  • Postal adress : 87300

  • Now submit it ... it will be approved just after one or two days . After that sign in and go in personal settings and change all of ur settings i.e adress,phone no etc to originals.

For Indians

No Need to own a web site of six month old. Rule to get Adsense approval:
  • Register your self at Indyarocks.

  • Upload a profile image.

  • Complete your profile.

  • Upload 10 photos in photo album.

  • Write 2 blogs of 100 words

  • Now apply adsense using your gmail.You will get adsense approved with in 2 days.
Best of luck guys ..... If this trick works for you , do let me know ..... :))






Monday, September 27, 2010

Best Online Earning Tricks

Best Online Earning ways suggested by Google ...... Google is the Best search engine so the ways suggested by google must work ..... Some of them are as follows ...... must try them









Hack a website using Directory Transversal attack?

What is root directory of web server ?

It is a specific directory on server in which the web contents are placed and can be seen by website visitors. The directories other that root may contain any sensitive data which administrator do not want visitors to see. Everything accessible by visitor on a website is  placed in root directory. The visitor can not step out of root directory.

what does ../ or ..\ (dot dot slash) mean  ?

The ..\ instructs the system to go one directory up. For example, we are at this location C:\xx\yy\zz. On typing ..\ , we would reach at C:\xx\yy.

Again on typing ..\ , we would rech at C:\xx

Lets again go at location C:\xx\yy\zz. Now suppose we want to access a text file abc.txt placed in folder xx. We can type ..\..\abc.txt . Typing ..\ two times would take us two directories up (that is to directory xx) where abc.txt is placed.

Note : Its ..\ on windows and ../ on UNIX like operating syatem.

What is Directory Transversel attack?

Directory Traversal is an HTTP exploit which allows attackers to access restricted directories and execute commands outside of the web server's root directory.

The goal of this attack is  to access sensitive files placed on web server by stepping out of the root directory using dot dot slash .

The following example will make clear everything

Visit this website vulnerable to directory transversal attack

http://www.chitkara.edu.in/chitkara/chitkarauniversity.php?page=notification.php

This webserver is running on UNIX like operating system. There is a directory 'etc' on unix/linux which contains configration files of programs that run on system. Some of the files are passwd,shadow,profile,sbin  placed in 'etc' directory.

The file etc/passwd contain the login names of users and even passwords too.

Lets try to access this file on webserver by stepping out of the root directory. Carefully See the position of directories placed on the webserver.

We do not know the actual names and contents of directories except 'etc' which is default name , So I have
marked them as A,B,C,E or whatever.

We are in directory in F accessing the webpages of website.


Lets type this in URL field and press enter

http://www.chitkara.edu.in/chitkara/chitkarauniversity.php?page=etc/passwd

This will search the directory 'etc' in F. But obviously, there is nothing like this in F, so it will return nothing

Now type
http://www.chitkara.edu.in/chitkara/chitkarauniversity.php?page=../etc/passwd
Now this will step up one directory (to directory E ) and look for 'etc' but again it will return nothing.

Now type 

http://www.chitkara.edu.in/chitkara/chitkarauniversity.php?page=../../etc/passwd

Now this will step up two directories (to directory D ) and look for 'etc' but again it will return nothing.

So by proceeding like this, we we go for this URL
http://www.chitkara.edu.in/chitkara/chitkarauniversity.php?page=../../../../../etc/passwd

It takes us 5 directories up to the main drive and then to 'etc' directory and show us contents of 'passwd' file.
To understand the contents of 'passwd' file, visit http://www.cyberciti.biz/faq/understanding-etcpasswd-file-format


You can also view etc/profile ,etc/services and many others files like backup files which may contain sensitive data. Some files like etc/shadow may be not be accessible because they are accesible only by privileged users.

Note- If proc/self/environ would be accessible, you might upload a shell on server which is called as Local File Inclusion.

Counter Measures

1. Use the latest web server software
2. Effectively filter the user's input






Saturday, September 25, 2010

Bom Sabado virus in orkut - A big treat for orkut

Google’s social networking website Orkut has been attacked by virus called “Bom Sabado” on Saturday morning, which is a big treat for orkut . “Bom sabado” is a Portuguese world it means “Good Saturday” in English.
Bom Sabado Orkut
Bom Sabado is an orkut virus affecting profiles of many. Those who are affected by this virus are advised to change password and security question. Log out immediately and also clear the cookies and history.

Users are also advised not to open Orkut account until the problem solved. Orkut had just last month announced new updates to the website. It’s a second time Orkut got affected by this kind of viruses. The same virus has hit Orkut last Feb also.




A few hours back, the Bom Sabado virus seems to have started and now it is all over orkut scraps that spreading from friend to friends. It is an auto generated message which is filing your scrapebooks. The scraps come from the friend list and it comes just like any other normal orkut scraps. Users are also advised not to open such scraps. The bug is hitting your cookies and automatically sending messages to your friend list.
If anyone reads this scrap even in their profile, their cookies are also stoled and so they are also posting scrap automatically to their friend list same scrap as bomb something like.
Orkut officials have not clear yet that the Bom Sabado is a virus or not. In week, this is a second XSS attack on a social networking website. The popular microblogging website Twitter was also attacked by a computer worm created by Norwegian. Twitter was received an XSS exploit, the attack, which emerged and was shut down within hours Tuesday morning and involved a XSS flaw that allowed users to run JavaScript programs on other computers.

Solutions:-

  • Do not visit any profile on Orkut till this script is blocked
  • Clear your cookies and cache right away and change your password and security question:







Twitter Delicious Facebook Digg Stumbleupon Favorites More

 

Recent Posts

Join Me On Facebook

200+ Followers

Followers


meet women in Ukraine contatore visite website counter

Recent Comments

Follow Me On Twitter

1112+ Followers