Have you seen messages like these being posted by your Facebook friends?
I thought this survey stuff was GARBAGE but i just went on a shopping spree at walmart thanks to FB = <link> , this wont last long so gooo!
I thought this survey stuff was BULL** but i swear I just used the Best Buy giftcard they sent me here <link> to buy a laptop!
I’ve removed the links from the above examples, but they point to Facebook applications.
In the examples I’ve seen, the messages have one thing beyond their wording in common – they’re all posted “via Mobile Web”, suggesting that the posts (which weren’t made by your friends, just in case you were still in any doubt) may be using a common vulnerability.
What’s interesting is that the application’s name seems to change each time. That obviously makes it harder to tell users what to look out for, but potentially could also make it more tricky for Facebook’s security team to shut down…
Read more in my article on the Naked Security website.
Found this article interesting? Follow Graham Cluley on Twitter, Mastodon, or Threads to read more of the exclusive content we post.