Today I received a text scarp from many of my friends. The scrap just said words like bomb amungu, bom sabado etc. Soon I noticed that many people have received the same scrap from me!
I started investigating the issue to find that its a worm stealing Orkut and Google accounts’ cookies and automatically posting scraps. It also automatically makes you join some communities. Here’s some important things to do while Google’s team resolves this issue –
1. If you get the bom sabado scrap from any of your friend, close the Orkut immediately. DO NOT visit your friend’s profile otherwise your cookies will also get stolen and your account will be used to post scrap to your friends.
2. If you have visited any infected profile and now your profile is also infected, then first check if some communities have been joined automatically, and remove them if there are any. Then immediately close Orkut. Then change your Google account’s password, security question, secondary email and mobile number.
Also, until this issue is resolved, DO NOT visit orkut. Just forget about Orkut for some time. I will update this post when the issue is resolved. Subscribe to HackTrix to get similar security alerts on time. Be safe!
Update – The Bom Sabado virus issue has been fixed by the Google team. The bug that allowed this to happen have been fixed and now the infected profiles will be cleaned and fixed gradually. You can now use Orkut like before.
