All the latest UK technology news, reviews and analysis

Warning on web 'super worm'

by Iain Thomson

More from this author

03 Oct 2007

Be the first to comment

  • Tweet this

Security specialists have warned that internet users could be facing a major worm outbreak spread via weaknesses in current browser technology.

A 'creative hacker' organisation known as GNU Citizen has published details of cross-site scripting (XSS) flaws that could be used to inject malware into computers via a web browser.

Further reading

The worm could scan IP addresses for vulnerable pages and then spread quickly across the internet.

These flaws are have been gathered in an online archive, XSSED.com, that could be used by malware writers to identify vulnerable sites.

A permanent malware spamming program could spread viruses across the internet by setting up a continuous link to the vulnerable site.

"XSSED.com has the largest archive of real, fully working, XSS vulnerabilities available today," said a site poster known as 'pdp'.

"They even have a list of XSS vulnerabilities found in websites ranked 500 and below. We are talking about high profile websites here."

The only limiting factor would be the ability of the online database to handle the traffic.

"A super worm of this kind could have potentially devastating consequences in the very near future," said Pete Simpson, Threatlab Active manager at Clearswift.

"The technology exists and the key question is one of motivation. A multitude of easy targets within web 2.0 social networks must certainly be attractive to organised crime."

Do you agree?

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Software

Maxthon 3 page

Maxthon 3.3.4.3000

Related white papers

Related articles

Related jobs

Today's top stories

Google logo

Google’s Motorola acquisition cleared by European and US competition authorities

Asus Transformer Prime vs Apple iPad 2

Apple iPad 2 vs Asus Transformer Prime head-to-head review

Apple logo

Apple commissions independent inspection of Foxconn iPhone and iPad factories

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

99%

0%

1%

0%

0%

Features

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

Khidr headshot

Intel will prove Steve Jobs wrong in the mobile market

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

Web Developer LAMP HTML CSS Bash Linux Cambridge.

Web Developer LAMP HTML CSS Bash Linux Cambridge...

Drupal / Web Developer - Chesterfield

Drupal / Web Developer ( PHP, Drupal, JavaScript, JQuery...

.NET / Web Developer

Web / .NET Developer ( ASP.NET, VB.NET, HTML, CSS, SQL...

Analyst / Developer (Case Management) - NW London - £35,000

Analyst / Developer (Case Management) - NW London - £35...

To send to more than one email address, simply separate each address with a comma.