IT Knowledge Exchange

Register

Forgot Password

Site FAQ

Advertisement

Home > IT Blogs > Security Bytes > New Facebook worm uses sexy model to get guys to click da’ button

>>VIEW ALL POSTS

Security Bytes

Nov 23 2009 2:12PM GMT

New Facebook worm uses sexy model to get guys to click da’ button

Posted by: Robert Westervelt

social networking flaws, social engineering, Facebook Worm

Facebook worm uses a cross-site request forgery attack to spread via the victim’s wall posting.

Israeli security researcher Gadi Evron and AVG researcher Nick Fitzgerald are reporting a new Facebook worm that uses a suggestive picture of a scantily clad woman to spread on the social network.

The picture includes a button and the phrase “Click da’ button, baby!” Once a Facebook user clicks the malicious link they are brought to an attack website landing page which automatically updates and copies the victim’s Facebook wall with the malicious link. It also copies the wall.

In blog posting Evron said he stumbled across the Facebook attack after he was tricked by a posting of the link on a friend’s Facebook wall.

This shows that even experts can become complacent and trust systems when they really shouldn’t. It’s a good reminder for me to be more careful with social networks, which for some reason I have grown used to trusting more, without even noticing it happen!

Fitzgerald wrote that the worm uses a cross-site request forgery (CSRF) attack “resulting in a form submission to Facebook “as if” the victim had submitted a URL for a wall post and clicked on the “Share” button to confirm the post.”

Comment

RSS Feed

Comment on this Post

You must be logged-in to post a comment. Log-in/Register

Rgmoon | Dec 31 2010 4:41AM GMT

Facebook is providing wonderful platform for visitors to interact with each other. It provides the services that enables families and friend to chat with each other. We are expecting that it will provide modified services in future as well.
emporia gazette

Rgmoon | Feb 9 2011 9:48AM GMT

facebook is one of the best site that helps us to interact with friends. Most important thing is that access is very easy and we must take advantage by using it. Thanks for this particular sharing of info.
log cabin democrat

Zara454 | Mar 3 2011 3:54PM GMT

It provides the services that enables families and friend to chat with each other. We are expecting that it will provide modified services in future as well. lupus tests

Rgmoon | Apr 30 2011 6:57AM GMT

Info related to IT and products related to this category is very important. It is another brilliant post from you side. Thanks for such nice stuff. Keep providing us such posts
Craigslist Albuquerque

Hearmes | May 23 2011 3:22AM GMT

Air Jordan shoes are always as classic as it used to be, so please be a air Jordan fan, you will find a lot of friends who are with you.

Community Blog | About Us | Contact Us | FAQ | Terms of Use | DMCA Policy

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organization's IT projects - with its network of technology-specific Web sites, events and magazines.
All Rights Reserved, Copyright 1999-2012, TechTarget | Read our Privacy Policy
Questions and Answers Index 1 | Questions and Answers Index 2 | IT Topics Index 1 | IT Topics Index 2 | Blogs Index | Blogs Tags

Podcast Powered by podPress (v8.8)