Another Facebook attack!

Avoid clicking any links saying “99% of people can’t watch this video for more than 25 seconds.”

Today, AVG discovered an interesting bit of maliciousness on Facebook. The initial lure is a link that says that 99% of people can’t watch this video for more than 25 seconds.

When you click the link, you are confronted with another screen that offers to show you a video, but, for the video to load, you need to copy and paste some code into the browser address bar.

If you are paying attention, you notice that you are adding javascript to your address bar, and you might smell a rat, and stop at this point.

If you are not paying attention, you are taken to a page which automatically tells all your friends that you like the app, and it posts that link to your status. It must be effective, because at the time of writing, it had nearly 600k “friends” that liked it.

To see it in action, watch the video here:

Via AVG Blogs

  • 07/08/2010
  • IT