Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




116 posts

Master Geek


Topic # 78858 9-Mar-2011 17:13
Send private message

Hey guys,

Just wanted to warn you on something that seems to be spreading rapidly fast.

It seems hackers figured out how to post to your Facebook profiles by you accidentally visiting their malicious website, there's no apps, there's no permissions, if you're logged into Facebook and click on their website it will post to your Facebook, I suspect it has something to do with your browser cookies. I'm going to research this and write up a blog post explaining it and how to protect yourself against it.

So don't go clicking on any dodgy looking videos posted by your friends on Facebook, or visit any malicious links.

If you do accidentally fall for it, make sure to visit your Facebook profile immediately and check to see if anything is posted to your wall, if it is then click the little cross that appears on the top right of the post "Remove AND Unlike"

I'll update this post with more details when I do some more research into this.

[Moderator edit (MF): moved to other forum]

 

Create new topic
536 posts

Ultimate Geek


  Reply # 447021 9-Mar-2011 17:33

[citation needed]

Infrastructure Geek
4056 posts

Uber Geek
+1 received by user: 195

Trusted
Microsoft NZ
Subscriber

  Reply # 447022 9-Mar-2011 17:36
Send private message

i *think* that if you are using Internet Explorer and you add facebook.com to your trusted sites, any other sites that are out of the trusted list which try to post to facebook.com will fail.

if you can reproduce the 'hack', then give that a go and see if it mitigates it.




Technical Evangelist
Microsoft NZ
about.me/nzregs
Twitter: @nzregs


 
 
 
 


Try Wrike: fast, easy, and efficient project collaboration software


116 posts

Master Geek


  Reply # 447035 9-Mar-2011 18:01
Send private message

Turning on SSL seems to have stopped the one malicious website but not the other.

As far as I can make out, it's Javascript that is initiating the whole "Like and Posting" on your Facebook wall.



Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

UpStarters - the New Zealand tech and innovation story
Posted 21-May-2018 09:55


Lightbox updates platform with new streaming options
Posted 17-May-2018 13:09


Norton Core router launches with high-performance, IoT security in New Zealand
Posted 16-May-2018 02:00


D-Link ANZ launches new 4G LTE Dual SIM M2M VPN Router
Posted 15-May-2018 19:30


New Panasonic LUMIX FT7 ideal for outdoor: waterproof, dustproof
Posted 15-May-2018 19:17


Ryanair Goes All-In on AWS
Posted 15-May-2018 19:14


Te Papa and EQC Minecraft Mod shakes up earthquake education
Posted 15-May-2018 19:12


Framing Facebook: It’s not about technology
Posted 14-May-2018 16:02


Vocus works with NZ Police and telcos to stop scam calls
Posted 12-May-2018 11:12


Vista Group signs Aeon Entertainment, largest cinema chain in Japan
Posted 11-May-2018 21:41


New Privacy Trust Mark certifies privacy and customer control
Posted 10-May-2018 14:16


New app FIXR connects vehicle owners to top Mechanics at best prices
Posted 10-May-2018 14:13


Nutanix Beam gives enterprises control of the cloud
Posted 10-May-2018 14:09


D-Link ANZ launches Covr Seamless Wi-Fi System
Posted 10-May-2018 14:06


Telstra, Intel and Ericsson demonstrate a 5G future for esports
Posted 10-May-2018 13:59



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.