as before with myspace and xanga, there is a new worm lurking on myspace with javascript in profile pages. this time for political reasons.

from chaseandsam:

well, well. somebody has managed to hack myspace.com with a flash based redirect that exploits what is apparently a gaping wide hole in the myspace code. if you are signed into myspace, and you go to a friends page, and then find yourself redirected to a blog post containing a diatribe about how the united states government is behind the 9/11 attacks, then your account has been hacked, and everyone who visits your page will be infected!! yes, it’s true, at least for now – everybody who visits an infected profile while signed into their myspace account will have their page hijacked!

gadi evron,
ge@beyondsecurity.com.