Monday, May 10, 2010

How to Prevent Your Orkut from http://cut3-babex.blogspot.com/ Honeypot

How to Prevent Your Orkut from Attack - Orkut Logo
Dear Friends

If you are a Orkut user, you should be aware of this dangerous attack, caused many users' accounts hacked to change / delete their profile information. Yes. Orkut is HACKED these days with some malicious honey pots like http://cut3-babex.blogspot.com/. Though this attack seems to be simple, it will lead to lose your Orkut profile at a stage. I would explain you about this attack in details providing necessary steps to prevent your information on Orkut. Read ahead for further information.

What is a Honey Pot?
'Honey Pot'
or 'Honeypot' is a term used in computer terminology (Information Security), is a trap set or forgery kind of thing to track, detect, delete, hack, deflect, or in some manner counteract attempts at unauthorized use of information systems. Generally it consists of a computer, data, website, or a network that appears to be a part of original network or website. It seems to contain information ora resource of value. But it is actually fake, isolated, unprotected, and monitored for the purpose of attacking valuable information from the original site. Read more about it from Wikipedia.
How to Prevent Your Orkut from Attack - Original Orkut Page


The Orkut Attack http://cut3-babex.blogspot.com/
The recent attack on Orkut is http://cut3-babex.blogspot.com/ which seems to be very dangerous honeypot that collects Orkut information using a website which looks similar to Orkut Login Page. It hacks your entire Orkut details like User Name/Password, Profile Info, Friends Details, Scraps, Messages, etc. But don't be afraid of using Orkut. Nothing wrong with Orkut, except this honeypot. We have solutions to avoid this hack.
The thing is that this honeypot seems to contain photos or pictures of cute babes. This is how it attracts to users into honeypot. But it actually kicks their ass off, and steals the information. So please be aware of it and informed with your friends.

How to Identify This Honeypot http://cut3-babex.blogspot.com/?
http://cut3-babex.blogspot.com/ uses a Login Page very similar to Orkut Login Page, which makes you to trust the site to provide your login details. If you see the below images, you will understand what the hack is.

Original Orkut Page
The below image is the original Orkut Login Page which has two essential things:
  1. Original Orkut Login Page address starts with https://www.google.com, which means that this page is from Google server, genuine.
  2. 'https' at the start to ensure it is a secure page.
  3. 'https secure symbol' at the end.



You can see all these identifications on any browsers like IE, Firefox, Chrome or Safari, but the location where these are maybe different. (As per your browser preferences).

Fake Orkut Page
The below image is the honeypot Login Page which is similar to Orkut Login Page:
  1. Fake Address, not from Google server
  2. Not a 'https' secure page
  3. No 'https secure symbol' on the browser.

How to Prevent Your Orkut from Attack - Fake Orkut Page


How to Identify Attacked Orkut Profile
You can identify a Orkut Profile which is attacked by this honeypot http://cut3-babex.blogspot.com/. I am not sure that this will present on all of the Orkut Profile attacked. But it is the case of most of the attacks.

How to Prevent Your Orkut from Attack


Steps to Repair Your Hacked Orkut Account
If your Orkut account is by this honeypot http://cut3-babex.blogspot.com/, then please ensure the following steps to be taken immediately:
How to Prevent Your Orkut from Attack - Remove Orkut Friend
  1. Change the password of your Google/Orkut account immediately.
  2. Never visit the link 'http://cut3-babex.blogspot.com/, nothing is there except losing your account.
  3. Always ensure the login page is original or not.
  4. Un-friend or remove the friend whose account is attacked from your friends list.
  5. Never visit attacked Orkut Profile.
  6. Do not accept New Friend Requests before visiting their profile.
  7. Never click on 'Proceed' button in any case for this kind of message 'User needs to access.. bla.. bla'.
  8. Set protection level to your scrapbook, photo albums and videos to private or friends only, NOT public.
How to Prevent Your Orkut from This Attack?
If you are sure that your account is NOT hacked, these are the steps to be followed to prevent your account form the attack:
  1. Never visit the link 'http://cut3-babex.blogspot.com/', nothing is there except losing your account.
  2. Always ensure the login page is original or not.
  3. Un-friend or remove the friend whose account is attacked from your friends list.
  4. Never visit attacked Orkut Profile.
  5. Do not accept New Friend Requests before visiting their profile.
  6. Never click on 'Proceed' button in any case for this kind of message 'User needs to access.. blah.. blah..'.
  7. Set protection level to your scrapbook, photo albums and videos to private or friends only, NOT public.
More Details About This Attack
Currently I am surfing and investigating more information about this attack and on permanent fix. Keep visiting www.mysearchhistory.co.cc for more updates.
About This Post
This post is originally posted by Muthuraj L on www.mysearchhistory.co.cc. This post is helpful for the following searches:
  • http://cut3-babex.blogspot.com/ attack on Orkut
  • Orkut hack preventions tips
  • How to prevent Orkut Profile from Attacks
  • Honeypot attack on Orkut
  • Orkut is hacked.

No comments:
Write comments