WHID 2006-37: MySpace Hack Spreading

MySpace seems to be a heaven for XSS worms. This one seems to be even more interesting as it uses JavaScript embedded in a flash file. It is also interesting as it seems to combine the popular political defacement trend with high level application layer exploit.

Additional information:

• Myspace Hack spreading like wildfire: SPAIRLKAIFS [Chase and Sam page, Jul 16 2006]
• How the myspace SWF hack worked [Unknown, Jul 16 2006]
• Political hacking hits MySpace [SC Magazine, Jul 17 2006]