Hackers on Youtube placed malicious JavaScript and HTML codes in the comments section of the page which would trigger when someone watched the video and caused a fake pop-up message to appear on screen and redirected them to the adult websites.
Report says that in some cases the pop-up message which appeared on screen, reported people about fake death news of Canadian singer, Justin Bieber.
Google said to have fixed the problem within two hours, when the issue was discovered. Comments on the pages were temporarily hidden by default within an hour.
Google spokesperson also said that they took swift actions to fix the Cross-site Scripting (XSS) vulnerability and will continue to study the vulnerabilities to prevent such issues in future.
{ 0 comments… add one now }