Major social networking service in INDIA Orkut owned by Google was affected with serious worm named “Bom Sabado” this word means “A Good Saturday” in Portuguese, But its really a bad Saturday for many Orkuter’s .
The Worm seems to, eating up the Orkut accounts by posting scraps with the text “Bom Sabado” and also adding affected users to new orkut groups.I f you watching a Bom Sabado scrap in your scrapbook or in your friends account is more enough to get your account infected. If you are among one,you might have noticed something randomly flooding their friends scrapbook with following message
Even we cant figure out the message was automatically generated by worm. The only clear thing is a script vulnerability in orkut sending automated scraps. Experts have advice the users not to login to Orkut until the Engineers fix the security hole.
If you are the victim of Bom Sabado please don’t panic!
There are some solutions to retrieve your account, you have to follow these steps
- Logout from your account and clear your browser cookies.
- Login again and Immediately change your password and security questions including secondary Email and mobile number if they also got changed.This will solve the problem.
- Verify for any communities addition in your communities list., remove the newly added some without your knowledge.
- If your account has been completely hacked you can see here for more help from google support forum.
Also remember these points always.
- Avoid logging into www.orkut.com temporarily. Google blog is expected to be updated once the bug fixing and infected orkut profiles are repaired.
- Never use any flooder in your account.
- Do not ever click suspicious link while logged into Orkut account, If you are curious you can copy the link and check them in other browser after cleaning its browser cookies and cache.
- Do your mobile verification also, so that you can get back your account if hacker doesn’t change the mobile number there.
This orkut bom sabado attack is spreading across millions of orkut profiles very faster. All these started to happen from yesterday morning its just Orkut XSS attack and nothing to worry. Google team is working on fixing the affected profiles.