How to Avoid Facebook LikeJacking Scams
By on March 22nd, 2011

Recently, some of my friends and family have been victims of Likejacking at Facebook. It’s a type of clickjacking in which you are tricked into Likeinga website. It’s never happened to me, but I’ve just been very lucky. After a short time studying these Likejacking scams, I can see that it’s easy to be tricked. Below are three examples and how it works.

[images from Facecrooks.com]

whalebuilding

panties

fat-kid-coaster

As you can see, these are very tempting and they look like legitimate Likesfrom your friends. If you click to open them, you are taken to a page, normally with a video on it that needs to be clicked to play.

fat-kid-click-vid

 

Clicking to play it, will instantly Likethis page on your wall. You can’t see it, but there’s a hidden Likebutton under your mouse cursor, no matter where you click on the page. Isn’t that sneaky?

Usually, you’ll be directed to fill out surveys before you are allowed to see a video. The hackers get paid for getting people to fill them out.

One defense against Likejacking is to use the Firefox browser with the NoScript add-on. If you are using Opera or Chrome browsers, you might try NotScripts.

Here’s what it looks like when a hidden Likejack is detected with NoScript.

noscript-clickjack

In Google’s Chrome browser, you can right click on a link in Facebook and open it in Incognitomode. That way, you won’t be logged into Facebook when you arrive at the new page.

incognito

So far, I haven’t seen that feature in other browsers, but I think it can be added via extensions or addons.

Your best defense is some common sense. You will need to be more suspicious of your friends’ posts. It’s hard to resist temptation, but it’s also good for you.

Tags: , , ,
Author: Clif Sipe Google Profile for Clif Sipe
Promoting Freeware and Free information since 2004. Owner of FreewareWiki.com with over 2000 pages of freebies. Please subscribe to my Google Feed or follow me on Twitter @clifnotes.

Clif Sipe has written and can be contacted at clif@techie-buzz.com.
  • http://serious-things.com Serious Things

    “It’s hard to resist temptation, but it’s also good for you.” – amen.

  • http://simster.us/blog/ simster

    i also experienced this. i hate this kind of tactics just to get many facebook fans

  • http://techbrand.net techbrand

    nice info..i’m also hate this kind of spam..make may facebook wall really disgusting with those trash..

  • http://www.ktechy.com ktechy

    Before some time also same message was spread, after knowing also many user have clicked on that video link…

    FB should blog the domain names which are hosting such third party javascripts.

  • http://scampatroljournal.blogspot.com/ Scam Patrol Journal

    Seems like this is becoming a common ground on Facebook. I had a friend who had 3 postings of a video which targets people to click the video and takes them to a site which seems like it downloads a script.

    I think what will help is not only to identify the problem but also if it happened to you? What next?

    Besides common sense may not be so common. My suggestion if it did happen is to take the links off the page, run an update scan change password done.

    • Dvd sison

      What pas word?

  • http://www.whattimein.com time

    good post, but anyway need to improve it

  • http://www.whattimein.com time

    yes its easy to be tricked,
    cause its so simple to make a script

  • Cole K

    I tried NOTSCRIPTS for Opera and it made Facebook just stop working. Maybe I’m missing something? The GHOSTERY Opera extension is great though. It removed 575 Advertisers from my browser.

  • http://www.facebook.com/profile.php?id=1536075330 Chuks Harold Igweze

    pls beware of facebook scams..it is very easy to be a victim…..

  • http://www.facebook.com/profile.php?id=100002883081441 Craig Maybury

    Nice work Clif.

  • Ninjabreadman

    If you open it (in incognito mode or otherwise) and right click it, then select “inspect element” (if you’re on Google Chrome, at least) you can actually see the script of the like button, and it highlights it…it’s right underneath the play button, as per this post. :O :P

 
Copyright 2006-2012 Techie Buzz. All Rights Reserved. Our content may not be reproduced on other websites. Content Delivery by MaxCDN