Clickjacking Worm Exploits Facebook "Like" Feature 124
An anonymous reader writes "For the last 24 hours, a series of attacks have exploited Facebook's 'Like' feature through a clickjacking vulnerability. Using subjects such as 'This Girl Has An Interesting Way Of Eating A Banana, Check It Out!' hackers have spread an attack that links to web pages that use invisible iFrames to trick users into saying they like the content. Users are presented with a innocent-seeming web page that says 'Click here to continue,' but clicking at any point on the page publishes the same message to their own Facebook page. Security blogger Graham Cluley says that hundreds of thousands of Facebook users have been hit, and offers advice on how to clean up affected Facebook profiles.
NoScript (Score:4, Informative)
Thank you NoScript for stopping this for me. I knew it looked "phishy."
Re:NoScript (Score:5, Informative)
Better yet, use NoScript's ABE facility to block any non-Facebook web page from loading a Facebook page or API. From http://noscript.net/abe/ [noscript.net] :
# This one allows Facebook scripts and objects to be included only .facebook.com .fbcdn.net .facebook .fbcdn.net
# from Facebook pages
Site
Accept from
Deny INCLUSION(SCRIPT, OBJ, SUBDOC)
Re:I was afraid to click the link... (Score:3, Informative)
Flea of Pain like this.
Re:caterpillar (Score:2, Informative)
If it helps, those are often called inchworms.
Re:Link? (Score:4, Informative)
http://www.mprosperstats.info/bananalike/index.htm?ref=search&sid=dpf-GrMT3GTEEuQTlotyMg.3788977952..1
Fix is right here (Score:4, Informative)
and offers advice on how to clean up affected Facebook profiles.
No problemo, just click right here:
http://www.facebook.com/group.php?gid=16929680703 [facebook.com]
The title is "How to permanently delete your facebook account." Or, is it?
Re:8===D O: == Muhammad (Score:5, Informative)
Yep, saw it last night. (Score:3, Informative)
Out of curiosity, I opened the link in a separate browser without my Facebook login. It would then try to do a "security check" in which you have to answer a survey to prove that you're human. Being the smart Slashdotters we are, we know Captchas are how it's done. The main take-away: (1) Hover, look, and think before you click and (2) If the link goes outside Facebook, it is SPAM and should be reported.
Re:Link? (Score:3, Informative)
Reminds me of this bash.org quote.
That's a great quote, so I kind of feel like a bastard for spoiling it, but... P2P programs generally recognise identical files by their hash value; so if the guy simply renamed some files that were already out there under their original name, they'd have used his copy for certain parts, even if people didn't search under it for that name.
Re:NoScript (Score:3, Informative)
A similar technique for Privoxy users can be found here: http://bmearns.net/wwk/view/Privoxy [bmearns.net]
By default it only stops cookies. At the bottom of the page it is explained how to block all Facebook access from third party sites.
Re:Link? (Score:2, Informative)
Probably NSFW depending how up tight your boss is:
http://www.youtube.com/watch?v=It7cHFyms0Q [youtube.com]