Privacy has been one of the major concerns of Facebook users roday, especially as the social network continues to increasingly grow to become a massive directory of personal information. Users are becoming very concerned as to who can access the information they post, fearful that these may be viewed and used in a malicious way. Given this, stalkers—people who aim to invade other people’s privacy—are considerably becoming Facebook users’ worst nightmare.
Facebook scams play on people’s fear of being stalked. This is not surprising, we have recently seen newly created domains that offer help to users in order to track down who most view their profiles, as well as how many times these were viewed. The domains contain strings like “profile view” and “creepers” in their URLs, suggesting their alleged purpose.
The pages list down certain instructions the user must follow to use the “stalker tool.” The instructions include copying a certain script and pasting it into one’s browser address bar.
The technique is very similar to a scheme we saw last year, which used the lure “10 lies girls ALWAYS tell guys! Funny!” In this case, the lure may be different but the effect is pretty much the same. Once the user copies the script into his address bar and executes it, his Facebook account is accessed by the script then used to spam messages that promote the stalker tool.
The said messages are randomly generated and may be posted either as a private message or as a wall post.
We tested if the so-called stalker tool works in all browsers and found that it does as long as JavaScript is enabled. The said script is now detected by Trend Micro as HTML_FBSPAM.ASM while access to the related domains is now blocked.
Post from: TrendLabs | Malware Blog – by Trend Micro
Facebook Stalker Tracker Tool Turns Users into Spammers
Related Posts
- Gmail Bug Turned Some Users into Spammers (Mashable)
Mashable - This week, a Gmail bug caused duplicate messages to be sent from some user accounts. In certain cases, the same messages were sent over and over for several days, which, as you can imagine,... - My Top Profile Viewers: See who views your profile
Scam Signature Message: My Top Profile Viewers: See who views your profile @Scam Type: Malware - Profile PeekerTrending: April 2011Why it's a Scam:Clicking the wall post link ... - Facebook Users Get Invited to a Spam Event
For sometime now we’ve been reporting threats targeting Facebook users, most of which result in users unknowingly spreading spammy links to their networks. We’ve seen different social engi... - Facebook flaw allowed websites to steal users’ personal data without consent
A couple of weeks ago two students conducting security research contacted me about a vulnerability which they believed they had found with Facebook.
Rui Wang and Zhou Li said that they had found a vu... - Scam: I was logged into Facebook for XXXX hours in 2010
Spam messages are spreading across Facebook claiming to be from users who have calculated the total hours they spent on the social network during 2010.
Would you be tempted to find out how long you h... - Facebook Now Officially Supports HTTPS for Users
In line with Data Privacy Day this Friday, Facebook announced its rollout of Secure Sockets Layer (SSL) capability for all of its services. Facebook has taken some heat for its lack of SSL support, ... - Those Facebook “stalker apps”? They don’t work, so avoid them
"Stalker apps" on Facebook—apps that claim to show you who's been looking at your profile—are not real. We're telling you that up front because it's not quite obvious to the people who use Facebook,... - My 1st St@tus scam hits Facebook users hard, spreads virally
Thousands upon thousands of Facebook users have been hit by a new survey scam spreading virally across the social network.
Messages claiming to be users' first ever Facebook status updates are being ... - Facebook scares users with account protection status warning
Over the last few weeks we have been contacted by a number of members of the Sophos Facebook page, concerned by a message they saw on Facebook, warning them that their account protection was "very lo... - Creeper Tracker Pro creeps around on Facebook
Sunbelt Blog -- Is it time to examine another Facebook scam?
Why yes, it is.
Located at…deep breath…99percentofgirlswouldkilltheirboyfriends(dot)info, this website takes the form of the familiar...
Posted on 23 February 2011. Tags: Facebook, Into, Spammers, Stalker, Tool, Tracker, turns, users
The above information is reprinted from and copyrighted © by Trend Micro.
