I just logged into my Friendster account and right after logging in, I notice the bulletin, so many people passing the same message. And I was intrigued and thinking how viral could this news be that everyone started passing it around. And also I noticed it coming from my Friendsters that do not pass that much messages on the Friendster Bulletin Board.
The message title reads:
boob flashing of famous mestiza model in embassy last sat
Since the bulletin board was filled with it, the news seemed to appear so big. I then clicked on it and following message is:
Fresh pix from the said incident last saturday at embassy bar is finally out. This famous mestiza commercial model and product endorser was doing it all for the camera, last sat night at embassy bar. Based on the sources this mestiza chic was apparently drunk and wasted at that incident, making her careless.. and bra-less if I may say… For sure you know this famous mestiza model. Almost 20 pix of the said incident are posted on this friendster link, check it out before they pull those naughty & mestizalicious pix out. check it out at www.friendster.com/embassyvip
Upon reading the message, although the news can be a bit vulgar in nature, the text was written in a way of trying to still be decent. It did not go to any executable file and totally seems harmless. The link goes to a Friendster account and not to any weird URL so it just goes to someone’s Frienster account, what can go wrong? In short, I just wanted to see the photos. *LOL* j/k
Upon clicking on the link, I am not really sure what is happening right after I clicked it, but it looks like an HTML table tag or a big div tag box that has a high z-index trying to go over the whole page hiding what is happening. A black box loads up and displays the following text which are loaded images that reads:
please wait… photos still loading (don’t click on anything until all photos have loaded)
Then after waiting, the page then forwards back to the bulletin board and has already posted on the bulletin board using your Friendster account.
As I was just curious how it was done, so I tried to running it again and stopping it in the middle of the loading process to see the source code. It is not that easy to get the proper timing to catch it. And even if you get to open it, the code is in Javascript but encoded in another form for most of the parts. Probably just an ISO unicode encoding but I am not going to waste my time to figure that out. But what was clear was the source of the script since it was given within the source code.
It was made my a certain Markyctrigger from the website www.markyctrigger.com. He calls this script the Overlay Generator and even has a several versions which are Lite, 4.3 and ++. I see no significant objective why he is doing this but to just probably promote himself and boast himself for being the creator of this script and that he found out about the Friendster Bulletin Board vulnerability aided with the customizing Friendster skin and media input. Just to probe in more who this person is, the owner of the domain appears to be:
Company: Akmal
Name: Muhamad Akmal bin Ishak
Email: caronexz@yahoo.com
Address: No 108 Tmn Cheneras Jaya
Kuala Lipis
Pahang,27200
MYPhone: +017.9118413
Domain Name was registered through:
SKSA Technology
URL : www.internet-webhosting.com
Contact No : +603-9145-1212
Email : sales@internet-webhosting.comWhose IP addresses seems to resolve in Singapore.
He says he’s from the Philippines in the website, he has domain information that says he is Malaysian and his server is in Singapore.
But all of the above can all be false information anyway.
This may be still continuously spreading Friendster since it spreads easily at the click of a URL. Or Friendster might already know about it and is already doing some precautionary measures and probably even some account suspensions.
July 18th, 2006 at 1:46 am
You should check my friendster profile, XSS’d it to edit the layout coz friendster layout is so lame. It’s called page booting.
Btw, you will also be automatically add me as friend also
July 18th, 2006 at 10:10 am
When people find ways to do evil, they will.
Haaay.
July 20th, 2006 at 6:22 am
so did you see any pics? hehehe~
July 20th, 2006 at 8:13 pm
Thanks for the information and you really have great potential to be a cyber cop =)
Great work on finding out the data of the person, if you don’t mind, could you give me some tips on how did you do that?
On one hand I can protect myself knowing that we arn’t really as anonymous as we think.
July 20th, 2006 at 11:21 pm
Hi Lauyee
What I did is still not that high tech, I still did not pin point the person and all information is online.
- HTML/Javascript/CSS Source code of any website is viewable. A simple right click, then view source, you can see everything already.
- Data of the person? We do not know even if the data is true. But what I checked was the owner of the domain which can be checked publicly. Try OmniDomain’s Whois
- Protecting? In the case of the bulletin hack thing… I really do not know yet. Actually it is the responsibility of Friendster to fix that. I have heard this going on also on MySpace. But these Bulletin posting and friend adding are not that damaging. It is just a post adn friend addition. But we never know what may come in the future if exploited further.
July 21st, 2006 at 1:44 am
so what does this script do? re-post the bullitin message?
lol that means that some ppl tried to click on it like 20 times, muhuhuaa!
July 21st, 2006 at 8:43 pm
Nyahahaha, yes, the ultimate manyak tester.
July 27th, 2006 at 3:33 am
Sir benj,
I am mark loreto, i am currently studying here in informatics commonwealth. I hear a lot about you from Maam Sharon dela Cruz and Sir Louie Morales.
I think that you know me, becuase Sir Louie might have mentioned me to you. Does the name “pepito” ring a bell?
I posted here to defend my work, becuase the Overlay generator is just a tool aimed to fully customize your friendster profile. it is not intended to be used in malicous acts like the bulletin board thing you just mentioned above. It was made by some other person who used the Overlay generator as an entry point in friendster for his malicous code.
I know the person who made the script that you mentioned, He is one of the person who uses the overlay generator.
A long time ago, i also wrote a script much like that one, but it is not aimed at wreaking havoc. My script was aimed at advertising the Overlay generator to the users of friendster.
After my script’s lifetime in friendster, that person asked me how i did it. But i didn’t tell him how to, even if he asked me vigilantly everyday.
And why would i release such a script? It will ultimately label me as a lamer, the Overlay Generator will also be labelled as a hacking tool, and people will hate me :).
I made Overlay Generator to harness the people’s interest in and curiousity on friendster. It is aimed to teach the users basic HTML, Layouting in’s and out’s, and tickling their creativity.
sige po ingatz po kayo sir benj
-Mark Loreto
July 28th, 2006 at 1:41 pm
mark did not in ANY way release that b00bz worm.. someone else did, and THAT person (who happens to like harry potter) used OG to execute his derrty script .. that gave OG a bad reputation … tsk tsk …. i pity u
As a matter of fact i thank mark for making the overlay generator .. coz i get to customize my friendster in any way i want .. not only that .. i learned alot in basic to advanced HTML .. javascripts .. gfx design etc. etc. .. and if it wasnt for overlay? i wouldnt even give a damn learning all the stuff i mentioned .. so mabuhay ka mark .. and welcome to the philippines .. more power to you!
suportado ka namin!
August 6th, 2006 at 4:26 am
Hi, hope u can help me and give some opinions on this following problem that im having. Someone has been using my name and details on friendster to create another account and friendster site, pretending to be me. The person stole my identity and pictures and is putting very rude and perverted contents on that particular site. As a law student, im pretty sure that even though i have reported this matter to the friendster authorities, the most that they can do is just to delete the person’s account and site. Yet, I really hope to find out the real identity of the person who did such a bad thing to me as it has caused alot of misunderstandings and insult to me and my friends who were also featured in the pictures he stole. Can you help me? Is there anyway that i can get to know the domain of the site and the identity of the friendster account owner just as u discovered the real identify of Muhamad Akmal as written above? Really disturbed by this matter, hope u can help or advise me. Thanks alot.
August 6th, 2006 at 10:12 am
Hi Denise,
Let me clear things first…
1. I wrote above: He says he is from the Philippines in the website, he has domain information that says he is Malaysian and his server is in Singapore. But all of the above can all be false information anyway. I am not arriving at any conclusion that Muhamad Akmal bin Ishak is a hacker. The domain markyctrigger.com ownership is indeed under his name. But this does not prove anything that he is the person responsible for everything.
2. After postings of other people on other blogs, as well as comments on this blog and personal IM messages I have received, the maker of the Overlay Generator, the tool that was used in the hacking, is not the hacker. The Overlay Generator is a tool to customize Frienster themes. And im my latest post, is a post that is cleaning the markyctrigger name.
3. We can only determine so much about a Friendster post. If someone just made a post and used your photos and name, there is notthing much we can do. The only reason I came up with the information above is because the hacker used the Overlay Generator, and I was able to find details but it. But then again, this still did not show who really did it. If ever you need help, I believe Friendster themselves is the best way to do it.
4. If you want to find it out yourself and I were you, sometimes your creativeness can help you find out. It will be simple, make a fictitious dude account with some hunky name. Send a friend request to the fake you. Think like a guy and flirt around with the fake you. And squeeze as much info you can get. And try to trace tracks from there. Sometimes with just an email address, it can tell a lot already. I know your full name but I will not mention it here but the initials are XJL. Your name sounds a bit Korean to me and since it is 2006, you ad probably a Resident Student, 2nd year Commerce/Law at the Trinity College / The University of Melbourne in Australia. But that does not mean again with an email address I automatically can get this info. It just means that by searching this info based on the email address you have used in your comment post (which I did not post of course) is just some of the information I found publicly. For some people you may find this information, for some people not. It will depend on how much information they have out in the open online.
October 12th, 2006 at 8:22 am
For your information, Mark Loreto is from Philippines while the one who sponsored for the domain was a Malaysian guy! I hope it cleared your doubts!
Anyway, Friendster has a lotz of security issues nowadayz and even without using the overlay generator, javascripts could be executed, including those harmful ones! I’ve even tried to do the same bulletin worm without using the generator and suprisingly, it worked! lol!
So, no point in blaming the guy who made the OG and brought up a new evolution in the world of Friendster! No one else is to be blamed!
Regards,
Vkey
–> http://www.vikneswaran.org
–> http://www.codevkey.info
October 16th, 2006 at 11:21 pm
markytrigger is a nice one. so dont blame mark loreto if its many people visits d site. its a nice one but i doubt if mark is anice person too.
October 25th, 2006 at 2:34 am
ei guys, DO you know how to view a profile/friendster account that is with LIMITED ACCESS..
if you know how pls help me..
jz send it to chrisg_021@yahoo.com
thx! mwah
November 6th, 2006 at 8:32 am
Nice analysis! Looks like people come here looking for friendster hacks.
November 6th, 2006 at 10:36 am
Actually yes. *LOL* based on traffic stats.
November 11th, 2006 at 4:41 am
hack a preson’s profile….i know ta preson e-mail add onli..
October 7th, 2007 at 3:30 pm
For the past two days I have been unable to access my Friendster account. Someone evidently hacked my account and changed the email and password. When my sister accessed my page, she noted there were new friends added within 24 hours, and I have not been online in that time. Could you please help me resolve this issue?
October 11th, 2007 at 6:37 pm
Im having problem wif my account. every time i go to my profile n click on my pics to see who gave a comment on my pics n suddenly, it goes to another link.same goes to when i click on edit profile.now i cant change anything beside just watching my same old profile. so i hope u can help wif the following problems that i have written.
November 3rd, 2007 at 1:35 am
Hi, I think its a scam but ah well…
May 25th, 2008 at 6:12 am
hi…can u help me,my friendster was hacked by someone we dont even know.someone changed the my profile ..
Someone has been using my name and details on friendster to create another account and friendster site, pretending to be me. The person stole my identity and pictures and is putting very rude and perverted contents on that particular site.help me? Is there anyway that i can get back my pasword…can u help me please…
September 29th, 2008 at 6:59 pm
I began this discussion to evaluate public usable web proxies:
Which are really anonymous?
Which can unblock facebook, myspace etc, in other words: are fresh ?
Which can you recommend?
Thanks for your help,
Dschibut
P.S.: In my country, the freedom of speech is somehow constrained, please give me a hint, if you are not sure about your recommendation.
October 7th, 2008 at 7:38 pm
Hi!
I would like improve my SQL capabilities.
I red really many SQL books and would like to
read more about SQL for my occupation as oracle database manager.
What can you recommend?
Thanks,
Werutz
October 25th, 2008 at 12:29 am
i would like to ask whether u can teach me to find out who is the people who do a frienster profile that say about my bad words..i will very appreciate your help…thankss
November 2nd, 2008 at 7:04 pm
how do i delte messages in bulletin board in friendster?