Processing .....please wait.. 
The article has been forwarded.... 
News >> Technology >>
5 Facebook apps can be used to spread Trojan
By siliconindia
|
Tuesday, 22 September 2009, 22:29 IST |
1 Comments
Bangalore: Grey Hat hacker Unu, who is well known for identifying security flaws in the websites of banks, security firms and the UK parliament, has now turned his attention to social networking sites. Unu has found five applications on Facebook that can be used to spread trojan virus or launch hacking attack. "The developers of these applications have made a very serious mistake. They have allowed load_file. And with a little patience, a writable directory can be found and by injection of a malicious code we get command line access with which we can do virtually anything we want with the website: upload phpshells, redirects, infect page with trojan dropper. Hackers can infect millions of computers in a relatively short time," said Unu on his blog.
The Romanian hacker has pointed out to five applications which are developed by Jeff Reifman, a former Project Engineer at Microsoft who works for Newscloud. Unu says that all these apps sites were made by the same developer and supervised by the same person whose password appears in clear text. But Unu says to Jeff that this is not personal, even though he indicates that such mistake should be avoided.
Unu also advises Facebook to be more careful in future. He says if the applications have vulnerability and users get infected then it will bring serious damage to Facebook's image.