MySpace Worm

A malicious QuickTime video on MySpace is being used to infect MySpace profiles. When a user plays the video, the links on the user’s page are changed to point to phishing sites, thus becoming an infected page. Any friend who clicks on this user’s MySpace page then infects their own MySpace page. The ultimate goal of the phishing attack appears to be the stealing of MySpace userIDs and passwords.

MySpace has requested that Apple patch the QuickTime hole. According to MacRumors, Apple is working on a fix. But Apple has yet to release it on their website. Neither is information regarding this patch readily available on the MySpace home page.

Related Articles:

• New MySpace Worm Using Quicktime Exploit
• Roundup on the MySpace Worm
• How Not to Distribute Security Patches
• Social Sites Insecurity Increasingly Worrisome
• Google News – MySpace Worm
• Technorati – MySpace Worm

Using the Education Backpack

Transferring Large Files between School and Home

1. Go to http://www.nvschools.org/nvbridge.htm
2. Click on link to Learning Portal / Education Backpack (right column, 2nd down)
3. Login to site –
• Username – Similar to UserID — BUT – only 1st 7 letters of last name are used
• Subscription ID: nvhs
• Password is first word of the name of the school
4. Click on Education Backpack link (top left)
5. A new window will open and the backpack will load.
6. To place a file in the backpack, click on the Add File icon and follow the prompts.
7. To access a file in your backpack, click on the name of the file
8. A window should pop-up asking if you want to open/save the file. Select Open.
9. Once the file is opened, save it with a slightly different name.
10. When finished with the file at home, log back into the Learning Portal and upload the new file to your backpack. Once it is uploaded, you should have the original file and your new file in your backpack. You might want to close the backpack and go back into it from home to make sure that the file was uploaded.