Facebook’s Offensive New Worm
Facebook users are dealing with a new threat; it is a piece of malware that does some embarrassing stuff to its victims. What it does is, to begin with, is to post on your Facebook Wall (and that is an area your friends have access to with or without signing in) a picture of a woman in a bikini. When a friend follow the encouraging words below that exhort you to “click da button baby”, two things will happen. The friend will find the same image clogging up his wall, and he will also be taken to a pornographic site. It could be more than mere mischief that is the motivation behind this worm; it might well be that they get affiliate commissions from the website for putting traffic their way.
Some call it a worm, but Facebook denies it on its press release. So how does this piece of malware get its way? No one really knows, but it is likely that it could be a combination Clickjacking attempt and Cross-site Request Forgery attempt. A Cross-site Request Forgery attack occurs when an infected computer tries to use the credentials that a victim has among his friends to, post information on their Facebook Wall. Clickjackingit is a dangerous thing; and Facebook will find it nearly impossible to effectively block it. Clickjacking is when a website tries to get people to click on buttons on a page that are either invisible or use other methods of stealth. HTML code used in webpage programming basically allows a flaw that permits this; the flaw can allow hackers to create special webpages that will trick users into clicking on buttons without being aware of it.
Facebook declares that it has blocked the attack; nevertheless they warn members do not go and click on links that do not trust. It may be a little hard to find out what you don’t trust, given the kind of humor people usually adopt to stand out on the Facebook Wall.