DO NOT OPEN YOUR ORKUT ACCOUNT TEMPORARILY AND IF YOU HAVE THEN IMMEDIATELY CLEAR COOKIES AND CACHE OF YOUR BROWSER IMMEDIATELY.
Orkut is affected by scraps titled Bom Sabado!. Heard it is a bug/virus and affecting profiles of many.
I suggest everyone to close your orkut tab for this time until this script get disabled from orkut. Bom Sabado (means Good Friday) is an orkut virus. The same virus has hit Orkut last Feb also. When the a user is affected by this virus it automatically send scraps to user’s friends titled Bom Sabado!
Bom Sabado is a cookie stealing virus. Those who are affected by this virus try to change their password as soon as possible and also clean your browser cookies.
Orkut officials havn’t given out any details of the scrap virus. Its safe to keep away from opening your orkut until orkut official give out the status of the attack.
It doesn’t take a genius to figure out that the “Bom Sabado!” messages are automatically generated by a script. However, it is not clear if this is simply a script exploiting vulnerability in Orkut, or have the accounts sending the automated scraps been compromised.
If you are amongst those affected, it’s highly recommended that you follow the steps highlighted below:
1. Switch to the “older version” of Orkut.
2. Log out of Orkut.
3. Clean your browser’s cache and cookies.
4. Log in and change your password and security question.
If you haven’t been affected yet, it is strongly advised that you avoid Orkut until the issue has been resolved. I managed to trigger the same exploit while researching this article. Recently other high profile websites like Twitter and YouTube also fell victim to XSS attacks.