Details of the LiveJournal Account Hacks 246
An anonymous reader writes "Brian Krebs of the Washington Post has written about the recent spate of
hijackings at Six Apart's popular LiveJournal service. Hundreds of journals have now been taken over by a
notorious group called 'Bantown' using a series of complicated cross-site-scripting vulnerabilities. Krebs details the recent security changes made by LiveJournal in response to the takeovers." From the article: "It is unclear whether LiveJournal has managed to close the security holes that the hackers claim to have used. The company says it has, but the hackers insist there are still at least 16 other similar JavaScript flaws on the LiveJournal site that could be used conduct the same attack. [Bantown] group members said they plan to turn their attention to looking for similar flaws at another large social-networking site. "
Legal Implications (Score:3, Informative)
This is Cross Site Scripting (Score:5, Informative)
The Cross Site Scripting FAQ [cgisecurity.com]
Re:Great! (Score:2, Informative)
You realize where you're posting this, right?
Long Standing Xanga Vulnerability (Score:2, Informative)
This exploit [grok.org.uk] works because Xanga lets users insert Javascript codes into their websites. A malcious user just needs to add the code to their "Look and Feel" control panel and then the Javascript code will send the login cookies of anyone who visits their page to a remote server. Xanga has rudimentary JS filtering of "bad" functions but these filters can easily be bypassed by using the document.print method to write out the bad code across several calls (i.e. document.print("");). Xanga knows about the problem but will not fix it.
This code was used to breach security of several Xanga administrators for many months.
Re:Oh dear! (Score:5, Informative)
How on Earth are all those white kids in the suburbs going to express their teen angst now?
I wouldn't know mate. I'm in my 30s, and I use LJ to keep in touch with family and friends around the world (UK, Australia, US and South Africa mostly).
Or at least I did, until my account was hacked and locked today. A good number of other accounts are in the same boat. I just hope that the LJ admins sort it out soon. My account email address was changed to bantownlj292@mailinator.com . I just hope my posts are OK. I can't even tell at present.
Re:Wake up call (Score:2, Informative)
Mod up. (Score:3, Informative)
Re:Hack This Sight (Score:2, Informative)
I think your sight is already hacked because you're too blind to realize that sight and site are two different things. Any just because they're pronounced the same doesn't mean they are the same thing. It's like son and sun.
Saying I wasn't going to complain anymore was a lie. I may start complaining more actually.