Australian teenager admits causing Twitter hacker attack

A 17-YEAR-OLD Australian schoolboy said he caused a massive hacker attack on Twitter which sent users to Japanese porn sites earlier this week.

Pearce Delphin, whose Twitter name is @zzap, admitted exposing a security flaw which was then pounced upon by hackers, affecting thousands of users and causing havoc on the microblogging site for about five hours.

Delphin, who lives with his parents in Melbourne, said he tweeted a piece of “mouseover” JavaScript code which brings up a pop-up window when the user hovers their cursor over the message.

But the idea was soon taken up by hackers who tweaked the code to redirect users to pornographic sites and create “worm” tweets that replicated every time they were read.

“I did it merely to see if it could be done... that JavaScript really could be executed within a tweet,” Delphin said.

“At the time of posting the tweet, I had no idea it was going to take off how it did. I just hadn’t even considered it.”

Twitter apologised to its millions of users after the “mouseover bug” raged through the site, opening pop-up windows in web browsers and automatically generating tweets from other accounts.

White House press secretary Robert Gibbs and Sarah Brown, wife of Britain’s former prime minister Gordon Brown, were among those hit by the bug before engineers patched it up.

The Netcraft security website traced the malicious code back to Delphin.

The glitch was mainly used for pranks, but Delphin said it could have been used to “maliciously steal user account details”.

“The problem was being able to write the code that can steal usernames and passwords while still remaining under Twitter’s 140 character tweet limit,” he said.

“Luckily, no one, as far as Twitter admits, actually used this to extract passwords from users.”

Delphin was one of the first people in Australia to start using Twitter, back in 2006, and said the site had known about the problem for “months” but failed to patch it.

The teen is just a few weeks off graduating from high school and hopes to study law. He had not yet told his parents about the cyberstorm he’d created.

“I discovered a vulnerability, I didn’t create a self-replicating worm.

“As far as I know, that isn’t technically illegal,” he said.

“Hopefully I won’t get in trouble,” he added.


Lifestyle

It won’t come as news to mothers-to-be that they are not eating for two, as the old saying goes, but the number of extra calories needed may come as a surprise. And it’s much fewer than you might think.Eating for two: It's quality not quantity of food that matters during pregnancy

No. It is such a small word, yet at times, something many of us find difficult to utter. The inability to say no to work, friends or family can cause so much stress in our lived lives.Learning Points: Just say no, there’s power in that little word

Fiona Kelleher has set some of the works of Múscraí poets Seán Ó Riordáin and Séamus Ó Céilleachair to music, writes Pet O'ConnellPoetry and music combine in reimagining of works of Seán Ó Riordáin and Séamus Ó Céilleachair

I fear I might be getting to that stage with my daughter Joan, who is 8, whereby I am the needy one! I fear I might be getting to that stage with my daughter Joan, who is 8, whereby I am the needy one!Mum's the word: I’m the needy one... I get the kiss off from my own daughter!

More From The Irish Examiner