MySpace hit by security breach

by admin July 21, 2006 at 4:53 pm

A banner ad on MySpace containing a Windows exploit may have infected over a million machines with spyware

Over a million MySpace users have been exposed to spyware that exploits a Windows vulnerability through a banner ad on the site, the BBC reported on Friday.

Those using Internet Explorer that has not been patched against the Windows Meta File (WMF) vulnerability could be exposed to spyware and adware.

The vulnerability in the way WMF images are handled by Windows was discovered in November 2005. In a WMF attack, exploit code is hidden within a seemingly normal image that can be spread via emails or instant messages, or via Web sites.

Reports suggest the advert has been running for approximately a week.

Full article: ZDNet UK