We've been advising our clients to switch to the Firefox web browser and use the NoScript add-on for years. Yesterday's worm outbreak on Twitter just reinforces this again.
Â
We are still not 100% positive this will protect you from this specific worm, but it likely will. The determining factor is if the exploit tells your browser to load the script from a non-Twitter site. If so then NoScript will protect you.
 
What is certain is you are far safer using Firefox and NoScript than using Internet Explorer ;-)
Â
Mashable and Techcrunch broke the story about StalkDaily about the same time yesterday:
How StalkDaily Opened a Gaping Hole in TwitterWarning: Twitter Hit By StalkDaily Worm (Updated)
Â
Â
Update: We have confirmed that Firefox with NoScript *does* protect you from the StalkDaily worm. Why? Because by default, NoScript blocks all scripts. You have to permit each site. So of course I have permitted Twitter.com, but I have *not* permitted the worm site where the script is coming from. Therefore it isn't allowed to run, therefore I'm safe.
Â
Damon Cortesi has a good technical breakdown on the worm mechanics, at:
Twitter StalkDaily Worm PostmortemÂ
Twitter's official response:
Wily Weekend Worms
Â
Â
| < Prev | Next > |
|---|
