It’s starting to seem like Facebook can’t win against those who wish to use their service to scam, spam and simply cause trouble. Over the last day or so, a new type of attack has been spreading using the phrase “OMG! I Can’t believe JUSTIN Bieber did THIS to a girl”.
It leads to a page asking you to verify a simple math problem to “prevent bots from slowing down the site”. In actuality, it is another clickjack-type scheme in which you are asked to type the answer into a box.
It doesn’t matter what you type, because it’s a social engineering trick. What you are actually typing is a comment that is used to share the link with your friends on Facebook. You can see the tooltip that says “Add a Comment” in the screenshot.
This bypasses Facebook’s recent attempt at detecting likejacking fraud. Links you comment on are not using the same mechanisms that Facebook is monitoring when you click “Like”.
Many moons ago, the first Facebook attacks started with illegitimate applications asking for permission to access your wall and spread their messages by spamming your friends through wall posts. While this worked well, it was a bit easy for Facebook to track down and remove the bogus apps.
Early in 2010 we saw the first attempts at likejacking. This technique involves layering one image over the top of a Like button and tricking the victim into clicking something that appears to play a video or a continue button, when in fact they are clicking the Like button hidden underneath.
More recently we have seen the attackers trying lots of new techniques. In the past few months we have seen them tagging people in photos they are not in to get you to click, inviting people to fake events and even making you an administrator of a Facebook page that isn’t yours.
While protecting yourself may not be as simple as not clicking anything that says “OMG!” that isn’t a bad start. Be skeptical, understand that messages from your friends may not in fact have been sent to you willingly, and if you are really tempted to click, take a short timeout to conduct a Google/Bing search.
As of the time of this writing some of the YouTube videos this scam leads to have been removed by YouTube. However, one video that is still working has over 525,000,000 views since February and thousands of comments in the last 24 hours — in other words, since this Facebook scam has been making the rounds.
To stay up to date on the latest threats, follow us on Facebook. For advice on how to configure your profile to protect your privacy check out This recommendations for Facebook settings.
Source :- http://nakedsecurity.sophos.com
Related Articles
- Audi has most engaged Facebook fans, beats out Justin Bieber (autoblog.com)
- This Lesbian Actually Is Justin Bieber (queerty.com)
- David Beckham Hangs Out With Justin Bieber (Kinda) (pinkisthenewblog.com)
- I can’t believe a GIRL did this because of Justin Bieber (zdnet.com)
- Justin Bieber’s cell phone number? Nope, it’s a Facebook scam (sophos.com)
- Why Justin Bieber Is An Online Marketing Guru (keepthepeakunique.com)
- I Discovered Justin (burnadvertising.wordpress.com)
- OMG: Justin Bieber Goes Bald! (thehollywoodgossip.com)
- SHOCKER: Justin Bieber’s Lookalike Is a Girl (odditycentral.com)
- Guy who took a picture of his face for 8 years FouTube Facebook scam (nakedsecurity.sophos.com)
Comments
Powered by Facebook Comments
It was a real contentment finding your site a short while ago. I got here right now hoping to discover new things. I was not disappointed. Your well thought out ideas about new strategies on this subject matter were insightful and a good help to me and my spouse. Thank you for having time to write out these things and then for sharing your opinions.
The recommendations you contributed here are incredibly priceless. It turned out such an exciting surprise to see that waiting for me once i woke up now. They are usually to the point and easy to interpret. Thank you very much for the innovative ideas you have shared right here.
Very cool, some interesting points! I appreciate you making these thoughts online, the rest of the site is also high quality. Have a good.
I like the valuable info you provide in your articles. I will bookmark your blog and check again here frequently. I am quite certain I’ll learn a lot of new stuff right here! Best of luck for the next!
I like the valuable info you provide in your articles. I will bookmark your blog and check again here frequently. I am quite sure I will learn plenty of new stuff right here! Good luck for the next!
I like the valuable information you provide in your articles. I will bookmark your weblog and check again here regularly. I am quite certain I’ll learn plenty of new stuff right here! Best of luck for the next!
It had been very useful. thank you for writing it. I’ll most definitely share it with my friends. Thank you
You really know your stuff… Keep up the good work!
Wow! This could be one particular of the most helpful blogs We have ever arrive across on this subject. Basically Magnificent. I’m also a specialist in this topic therefore I can understand your hard work.
This one is an inspiration personally to uncover out rather more related to this subject. I have to confess your knowledge prolonged my sentiments in addition to I’m going to proper now take your feed to remain up to date on each coming blog posts you would possibly presumably create. You might be worthy of thanks for a job completely performed!
My neighbor and I were just debating this specific subject, he is often seeking to prove me incorrect. Your view on this is nice and exactly how I actually feel. I just now mailed him this web site to indicate him your personal view. After wanting over your website I guide marked and will be coming again to learn your new posts!
some truly terrific work on behalf of the owner of this web site , dead outstanding content material .