Myspace Quicktime patch scam or otherwise ?

B

Bill Jillians

Hi ...

long time no see.

I'm just wondering about a warning I get on the front of my Myspace
page. It says there could be a possible security breach (from criminals)
if I don't run a patch for Quicktime which Myspace has somehow
miraculously detected on my computer.

I'm not sure how it did this. Thinking Mr. Murdock could NEVER be in
league with those nasty criminal types, no never, I decided I'd best run
the patch.

Nothing apparently happened. No redirection to a Quicktime website.
Nothing.

I ran it again. Nothing.

I can understand why Myspace might want to compromise the computer of
somebody like me (Cambridge graduate ... links to some heavy hitters) so
what I'm wondering is ..... how do I now check my computer has not been
compromised ???

And also .. does anyone know anything more about the criminal crap going
on at Myspace (and in particular this Quicktime "fix").
 
L

Luke

Hi ...

long time no see.

I'm just wondering about a warning I get on the front of my Myspace
page. It says there could be a possible security breach (from criminals)
if I don't run a patch for Quicktime which Myspace has somehow
miraculously detected on my computer.

I'm not sure how it did this. Thinking Mr. Murdock could NEVER be in
league with those nasty criminal types, no never, I decided I'd best run
the patch.

Nothing apparently happened. No redirection to a Quicktime website.
Nothing.

I ran it again. Nothing.

I can understand why Myspace might want to compromise the computer of
somebody like me (Cambridge graduate ... links to some heavy hitters) so
what I'm wondering is ..... how do I now check my computer has not been
compromised ???

And also .. does anyone know anything more about the criminal crap going
on at Myspace (and in particular this Quicktime "fix").

http://blog.washingtonpost.com/securityfix/2006/12/how_not_to_distribute_security_1.html
 
B

Bill Jillians

Quietly we read <[email protected]>, unable to
contain our credulity we realized that Luke said:

Many thanks Luke ... that clarifies the situation. Nobody really knows.

So I wasn't alone in my paranoia? That is comforting.

But I'm going to give any further Myspace recommendations the they
deserve from now on. Myspace clearly have problems that inquiring minds
need to know about.


(Crossposted to alt.suicide.holiday because it is the sort of thing they
deserve to know about).
 
L

Laura Fredericks

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Myspace clearly have problems that inquiring minds
need to know about.

Owned by Rupert Murdoch's News Corp. ;-)

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1

iQA/AwUBRXrvfKRseRzHUwOaEQIK6ACg6ZBRczvM2ZLwdFzkXAAfAEcsez0AoPz5
LAnmRA756Ret2vihUcI2OGUB
=ElnD
-----END PGP SIGNATURE-----

--
Laura Fredericks
4Q's &quot;wicked evil bitch of satire, parody, humor and trollism&quot;

PGP key ID - DH/DSS 2048/1024: 0xC753039A

alt.comp.virus photo gallery:
http://www.queenofcyberspace.com/acvgallery/

usenet flamewars:
http://www.queenofcyberspace.com/usenet/

Check out TurboNote+, the best onscreen sticky note program EVER!
http://turbonote.com/TBNPlusIntro::.@HGT

Remove CLOTHES to reply.
 
B

Bill Jillians

unable to contain our said:
Bill Jillians <"\"Bill


No, myspace is telling its userbase about a worm that's been spreading
via a Quicktime vulnerability and javascript execution and that among
the only ways to protect yourself is to have a patched quicktime, or
not run active scripting, or no have quicktime at all.


Myspace is script kiddie heaven. Dont' surf it without a hell of a
lot of care because like any site that allows a tremendous degree of
user generated content and html, it's dangerous as hell to be in there
with javascript turned on.

Best Regards,

Thanks Todd.

One thing I have noticed since I clicked on that link is that Javascript
is now turned off.

Guess I have a choice between Javascript and Myspace.
 
T

Todd H.

Bill Jillians said:
Hi ...

long time no see.

I'm just wondering about a warning I get on the front of my Myspace
page. It says there could be a possible security breach (from
criminals) if I don't run a patch for Quicktime which Myspace has
somehow miraculously detected on my computer.

No, myspace is telling its userbase about a worm that's been spreading
via a Quicktime vulnerability and javascript execution and that among
the only ways to protect yourself is to have a patched quicktime, or
not run active scripting, or no have quicktime at all.
I'm not sure how it did this. Thinking Mr. Murdock could NEVER be in
league with those nasty criminal types, no never, I decided I'd best
run the patch.

Nothing apparently happened. No redirection to a Quicktime
website. Nothing.

I ran it again. Nothing.

I can understand why Myspace might want to compromise the computer of
somebody like me (Cambridge graduate ... links to some heavy hitters)
so what I'm wondering is ..... how do I now check my computer has not
been compromised ???

And also .. does anyone know anything more about the criminal crap
going on at Myspace (and in particular this Quicktime "fix").

Myspace is script kiddie heaven. Dont' surf it without a hell of a
lot of care because like any site that allows a tremendous degree of
user generated content and html, it's dangerous as hell to be in there
with javascript turned on.

Best Regards,
 
T

Todd H.

Bill Jillians said:
Thanks Todd.

One thing I have noticed since I clicked on that link is that
Javascript is now turned off.

Guess I have a choice between Javascript and Myspace.

Yeah, myspace is pretty annoying. Many essential features absolutely
require javascript.

I'm not sure what the magical mix of firefox add-ins makes it both
usable and reasonably safe.
 
Y

yarrido

Todd said:
Yeah, myspace is pretty annoying. Many essential features absolutely
require javascript.

I'm not sure what the magical mix of firefox add-ins makes it both
usable and reasonably safe.

I've been staying away from that place since I heard about it, but had
a client who used it and had to prep a notebook for the web for her.
Only then did I find out that Kaspersky anti-virus, the web portion of
the protection, has a kinipshin-fit when you try to log onto the site.
It gets you stuck in a continuous loop of logins. You have to set up
myspace as a trusted URL in the Kaspersky settings before it will let
you log on. What a pain. And yet, everyone is flocking to the damn
thing. I prefer the roads less traveled on the web since you get to see
much more interesting sites. :)
 
Y

yarrido

Todd said:
Yeah, myspace is pretty annoying. Many essential features absolutely
require javascript.

I'm not sure what the magical mix of firefox add-ins makes it both
usable and reasonably safe.

I've been staying away from that place since I heard about it, but had
a client who used it and had to prep a notebook for the web for her.
Only then did I find out that Kaspersky anti-virus, the web portion of
the protection, has a kinipshin-fit when you try to log onto the site.
It gets you stuck in a continuous loop of logins. You have to set up
myspace as a trusted URL in the Kaspersky settings before it will let
you log on. What a pain. And yet, everyone is flocking to the damn
thing. I prefer the roads less traveled on the web since you get to see
much more interesting sites. :)
 
L

Laura Fredericks

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Http://www.myspace.com/134873668

But I haven't written any javascript for the page yet.

Lol. Oh, I sent you a "Friend" request. ;-)

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1

iQA/AwUBRXub1qRseRzHUwOaEQI4OQCgyQHhBqHAJS2i7az4a/tNZuyCA8YAoOUt
0xjz/jZTWqHzCVr7Aek2+d1a
=NeaG
-----END PGP SIGNATURE-----

--
Laura Fredericks
4Q's &quot;wicked evil bitch of satire, parody, humor and trollism&quot;

PGP key ID - DH/DSS 2048/1024: 0xC753039A

alt.comp.virus photo gallery:
http://www.queenofcyberspace.com/acvgallery/

usenet flamewars:
http://www.queenofcyberspace.com/usenet/

Check out TurboNote+, the best onscreen sticky note program EVER!
http://turbonote.com/TBNPlusIntro::.@HGT

Remove CLOTHES to reply.
 
L

Laura Fredericks

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

where have you been all the last time?

You're still alive?!

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1

iQA/AwUBRXy2j6RseRzHUwOaEQLIUgCeL18/LvU0s3amJkrNBEQ6upFTrVAAoMsu
t5xyjKaTED5y3zwLuC7pGWV1
=XfoZ
-----END PGP SIGNATURE-----

--
Laura Fredericks
4Q's &quot;wicked evil bitch of satire, parody, humor and trollism&quot;

PGP key ID - DH/DSS 2048/1024: 0xC753039A

alt.comp.virus photo gallery:
http://www.queenofcyberspace.com/acvgallery/

usenet flamewars:
http://www.queenofcyberspace.com/usenet/

Check out TurboNote+, the best onscreen sticky note program EVER!
http://turbonote.com/TBNPlusIntro::.@HGT

Remove CLOTHES to reply.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Top