Posts tagged as:

Likejacking

Malware-Laden Chrome Extension Hijacks Facebook Profiles

March 26, 2012

Kaspersky Lab cautions about malware-laden Chrome extensions, that are being uploaded and hosted on Google’s Chrome Web Store.

chrme ext 300x139 Malware Laden Chrome Extension Hijacks Facebook ProfilesThe malware in question is  pretends to be a Flash Player installer but instead downloads a Trojan. Once installed, it takes control of a user’s Facebook profile and starts posting messages encouraging the victim’s friends to install the same extension. It also starts to automatically Like certain pages.

This, according to Fabio Assolini, is part of a pay-per-Like scheme that helps the attackers to cash in.

The attacks starts off as suggestions to download Facebook apps. The suggestions comes with messages saying your friends have also downloaded the same app.

This extension and its variants were found to be largely confined to Brazil and other Portuguese-speaking nations.

This trick is neither new nor specific to Chrome browser. However, it is easier for users to fall for it since the extension is distributed from trusted place like  the official Chrome Web store.

The extension was notified to Google and was duly removed. But, new variations of the extensions are being reportedly uploaded by the scammers on a regular basis.

So, users will have to use their best judgement and stay informed in order to stay safe from the millions of scams on the Internet that are doing the rounds.

Remember this for future reference. Adobe Flash Player is a plug-in and not an extension, and it is installed outside the browser.

{ 0 comments }

Facebook, Washington State Attorney Up Against Adscent Media For Likejacking

January 27, 2012

Facebook team up with the Washington’s attorney general have filed separate suits against Adscent Media, an ad network accused of encouraging the spread of spam via tactics like clickjacking.

In most Facebook scams, users are offered links to provocative content, and through a series of cleverly designed steps, tricked them into liking pages, and/or unwittingly surrendering personal information, subscribing to expensive services, and spreading links to their friends.

Likejacking is a form of clickjacking, which takes advantage of a browser vulnerability that permits malicious actors to make the ‘Like’ button invisible. Once the ‘Like button is made invisible, scammers can overlay pictures and other content, and trick users to click on the invisible ‘Like’ button.

In some cases, a process called “clickjacking,” codes are hidden in enticing-looking links, that activates Facebook’s ‘Like’ function.
Facebook said a browser vulnerability that allowed the exploit has been fixed so users shouldn’t continue to see the scam.

Adscend Media LLC, a self-described “performance-based marketing network”, is believed to have generated $20 million a year from the actions.

“We don’t ‘like’ schemes that illegally trick Facebook users into giving up personal information or paying for unwanted subscription services through spam,” Attorney General Rob McKenna said in a statement.

“Security is an arms race, and that’s why Facebook is committed to constantly improving our consumer safeguards while purshing and supporting civil and criminal consequences for bad actors,” said Facebook General Counsel Ted Ullyot.

{ 0 comments }