Tuesday, August 24, 2010

Clickjacking is another social network scam but for Facebook

Clickjacking is one more social network scam but for Facebook

This has been a busy week for Facebook scams. Today Facebook warned users about a new clickjacking scam that milks $ 5 a week from cell phone accounts by exploiting Facebook’s “Share” feature. It appears that Facebook has let the clickjacking scam and dislike scam emerge together. Facebook buttons that don’t really exist, like the likejacking scam last May, are what these scams use. Facebook users can protect themselves against the growing list of scams by learning how to recognize typical red flags.

How to Facebook clickjack

Friends are told to click on the posts, posted to their profile, with the Facebook clickjacking scam. PC World explains:

A user clicks a link to a Facebook page for “10 Funny T-Shirt Fails” for example. Once on the page, a message says Facebook’s new three-step human verification process is required to see the content. On step two, users are asked to click the “Next” button. The Next button is a dummy. Hidden underneath is a real Share button. When users click Next to get to the final step, they actually post that page to their profile wall. Lured to step three, users are asked for personal information to enter a contest. Among other things, the survey asks for a cell phone number. Down in the survey’s fine print it says providing the data tacks an extra $ 5 per week onto the users cell phone bill for a service called “The Awesome Test.”

Facebook also had the dislike button scam

The Facebook dislike button scam only ended up happening because users wanted the button. There is no “dislike” button on Facebook. Walletpop reports the scam involves a bogus “Dislike” button designed to install malicious spyware for identity theft. The bogus button appears with a message: “Get the official DISLIKE button now,” followed by a link. An “install” page is where you head next. Users would automatically get a dislike button if it were real. Installing it simply means letting the application run like it needs to. Then they are asked to complete a survey — the exact same trick used within the Facebook clickjacking scam.

Watch out for Facebook scams

The clickjacking scam on any fan pages meant an automatic removal from Facebook. Anyone who filled out the survey should call their cell phone company. As outlined by Reuters, Facebook users should be looking for different patterns of these scams. Be skeptical and use common sense. Status updates from individuals that seem odd or out of the ordinary should be ignored. The way the message was written, and just how it was delivered, will help you with this. Apps like the “Official Dislike Button” won’t be needed for Facebook to give you something. Going from Facebook to another site is always a good sign of a scam.

More on this topic

PC World

pcworld.com/article/203546/facebook_warns_of_clickjacking_scam.html?tk=hp_new

Wallet Pop

walletpop.com/blog/2010/08/16/dislike-button-on-facebook-a-scam/

Reuters

reuters.com/article/idUS162937196620100817



No comments:

Post a Comment