Subscribe / Unsubscribe Enewsletters | Login | Register

Pencil Banner

Don't blame Anonymous for Facebook porn storm, says researcher

Gregg Keizer | Nov. 18, 2011
The recent spam attack that planted pornographic images on Facebook was not the work of Anonymous, a security researcher said today.

Yesterday, Facebook admitted that the pornographic self-XSS attacks had sidestepped those defenses.

"We had since adapted our systems to the Bin Laden self-XSS variant [but] this attack used a previously-unknown spam vector," said a Facebook spokesman in an email Wednesday. "We have now tweaked our systems to better detect and block this variant."

Facebook also said that it had identified those responsible for the attacks, and was "working with our legal team to ensure appropriate consequences follow."

As BitDefender threw cold water on the idea that Anonymous plotted the attacks, other researchers said they were still in the dark about how the hackers duped users or who had created the spam.

"We still do not have solid information or screenshots," acknowledged Commtouch, whose researchers have previously discussed self-XSS attacks . "The spread of the images makes it difficult to determine the originating users who actually, or unknowingly, started the attack."

Users can prevent self-XSS attacks by refusing to copy and paste JavaScript -- or anything else -- into their browsers' address bars, experts have advised.

 

Previous Page  1  2 

Sign up for MIS Asia eNewsletters.