1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Huge Security Hole In Digg, Reddit And Even YouTube

Discussion in 'Black Hat SEO' started by trooper, Apr 14, 2010.

  1. trooper

    trooper Regular Member

    Joined:
    Jun 5, 2009
    Messages:
    207
    Likes Received:
    210
    Location:
    Front lines
  2. marcdk

    marcdk BANNED BANNED

    Joined:
    Jan 8, 2009
    Messages:
    205
    Likes Received:
    57
    Can someone translate? LMAO, this guy is very very hard to understand, it might be because i'm from Denmark, and english isn't my fluent language, anyway i got an A+ in english on a C niveau, so i should be able to understand.. LOL

    I have to sit and concentrate like mad to understand this guy..

    Good share though :p
     
  3. gregstereo

    gregstereo Elite Member

    Joined:
    Oct 5, 2009
    Messages:
    1,833
    Likes Received:
    1,027
    Occupation:
    I'm known to locate certain things from time to ti
    Location:
    Moose Factory, ON
    No it's not just you, he's kinda hard to follow.

    I think he's rambling about obfuscated URL's posing as reputable domain names (e.g. a meatspin link munged into looking like its a digg link).
     
  4. ed_banger

    ed_banger Newbie

    Joined:
    Jan 17, 2010
    Messages:
    34
    Likes Received:
    28
    Basically, you create a youtube video, and put a link in the "info" area. Youtube converts that link into a redirect. You now have a link that goes to http://youtube.com/blah blah redirect?=yourdomain.com&somehashkey

    You copy/paste the youtube redirect link and spam that link across digg/reddit other sites, and people think they are going to a youtube video, because the link starts with youtube.
     
  5. Rockin

    Rockin Junior Member

    Joined:
    Dec 30, 2009
    Messages:
    102
    Likes Received:
    29
    The article is pretty badly written, and this flaw isn't that big of a deal anyways. The flaw is that you can use the youtube.com/...., reddit.com/...., digg.com/...., web address but still direct someone to a different page. Problem is you still need a way to get people to see and click your link.
     
  6. Bloox

    Bloox Regular Member

    Joined:
    Oct 20, 2009
    Messages:
    213
    Likes Received:
    46
    Location:
    Hamburg
    That's already fixed.
     
  7. aftershock2020

    aftershock2020 Senior Member

    Joined:
    Oct 19, 2007
    Messages:
    981
    Likes Received:
    477
    You can redirect any site, at any time. This is nothing new. Don't concern yourself with it. It happens all the time, all over the web, not just with these resources.