Last month I blogged about a rogue Facebook application that had tricked hundreds of thousands of users into giving it access to their profiles, and spreading a message saying they were “never texting again”.
Today I stumbled across a Facebook page called “I May NEVER TÊXT AGAIN After Reading THI$!!” (“I May Never Text Again After Reading This!!”) which uses a similar message to encourage users into “liking” it, and sharing a similar message to all of their Facebook friends.
Here’s a YouTube video where I demonstrate what happens:
[youtube=http://www.youtube.com/watch?v=Fb7GSGTpjoc&w=500&h=308&rel=0](Enjoy this video? You can check out more on the SophosLabs YouTube channel and subscribe if you like)
Remember, the issue here isn’t just that you’re helping scammers earn money by advertising links to their online surveys – by “liking” Facebook pages like this you are also opening yourself up to the possibility of future attacks too.
Over 200,000 Facebook users have already “liked” the rogue page, meaning that at anytime the unknown owner of the page can send them an update which could contain an unwanted advertising message or – worse – a malicious link.
If you’re on Facebook, and want to learn more about security threats on the social network and elsewhere on the internet, join the Sophos Facebook page.