Computer Support Blog

Please enter a valid ZIP code.

Tech Support Blog

Clickjacking Strikes Again

Facebook users may have been victimized by yet another scam.

Internet security firm Sophos has release information on another ‘clickjacking’ scam that hackers recently used to defraud Facebook users out of $5 a week.

While that may not sound like a very big scam, multiply $5 by even a fraction of Facebook’s 500 million users, and the totals add up quickly.

As with many of the recent Facebook attacks, this one utilized a ‘clickjacking’ methodology.

Clickjacking refers to the malicious method of spreading malware that involves tricking users into clicking onto links or buttons that perform hidden actions.

In this case, users saw a link in their news feed, supposedly posted by a friend, to funny content like “10 Funny T-shirt Fails.”  Clicking on the link would take the user to a page, supposedly still part of Facebook, which required a three step “verification” process.

The second step featured a clickjacking “Next” button, which hid a “share” button.  Clicking on the “Next” actually shared the content to a user’s wall and news speed, thereby spreading the attack.

The third “verification” step asked users to take a survey and fill out some information, including a cell phone number.  The fine print on the page stated that, for the privilege of filling out the survey, a user’s phone would be charged $5 per week.

Facebook has since removed all the pages linked to the scam, but that may be too little, too late for some users.

If you believe you’ve been a victim, be sure to remove any and all links to the phony pages from your wall.  Then contact your wireless provider immediately to determine if these charges have been applied and to put a stop to them.

To avoid being victimized by any future scams, follow these Internet security tips:

  • Never provide personal information, like a cell phone number, online
  • Verify any links with the “friend” that posted them
  • Always read the small print
  • Monitor your wireless, bank, and credit card accounts closely

 

About RESCUECOM:

RESCUECOM provides computer repair and computer support, 24/7: Meeting every tech support need including data recovery, virus removal, networking, wireless services, and computer support for all brands of hardware and software. For computer support or information on products, services, or computer repair, visit https://www.rescuecom.com or call 1-800-RESCUE-PC.

For More Information, Contact:

David Milman, CEO

315-882-1100

david@rescuecom.com

Leave a Reply

© 1997-2024 RESCUECOM Corporation
Patented - Patent Numbers: 6,898,435, 8,832,424 and 9,477,488
Additional Patents Pending