Italian users could be at risk of being clickjacked on Facebook, as a new attack is seen spreading between users.
SophosLabs has been seeing some detections of Mal/FBJack-A from Italian users, as they attempt to watch a video of a stripping Italian schoolteacher.
The webpage presents itself as though it is about to play a video. It’s title reads:
Professoressa SP0RCACCIONA si SP0GLIA nei banchi scuola per scommessa , VIDEO DA NON PERDERE
If you don’t speak Italian, here is a rough translation ‘in inglese’:
Dirty teacher undresses between the school desks. Video not to be missed.
Searching on Google I was able to find over 3000 apparent links to the attack page, indicating that the scam is widespread on Facebook at the moment.
Here is what an infected Facebook user’s page would look like, with mention of the clickjacking page in their “Likes” section:
Facebook users not using Sophos Anti-Virus can protect themselves from clickjacking threats like this by using browser plugins such as NoScript.
Facebook users can learn how to protect themselves by reading Sophos’s recommendations for Facebook security. Interestingly, our advice looks much sexier in Italian: Consigli di Sophos per le impostazioni di Facebook.
To keep informed about the latest Facebook security threats, please join the Sophos page on Facebook where we regularly highlight new attacks.
Related Posts
- Italian model exposed in Facebook clickjacking attack
The mere mention of anything with a sex connotation on Facebook almost always begets some major activity, with people wanting to know more. As a result, whatever the attack vector or channel might be ... - Facebook clickjacking: Malware takes on new Italian disguises
Non-English speaking Facebook users shouldn't be fooled into believing that they are somehow immune from the scams and attacks that plague the social networking site.
The latest few campaigns seen by ... - Cheryl Cole clickjacking on Facebook, posing as a BBC news report
Girls Aloud pop star Cheryl Cole, famous in the UK for her role as a judge on top TV show "The X Factor" which had its grand final last night, is being exploited by scammers on Facebook.
Scammers are... - Facebook Clickjacking Attacks: Recognize and Avoid Them
So far the clickjacking attacks that are making the rounds on Facebook haven't done more than forcibly gather web traffic. Learn to recognize and avoid them now, before a more dangerous version surfac... - Facebook Clickjacking Attack Strikes Home
Last week Graham Cluley, Senior Technology Consultant for Sophos, warned in his blog about a sleazy Facebook scam involving "shocking content". The scam first demands you click a button to c... - Facebook Warns of Clickjacking Scam
Security firm Sophos recently discovered a new clickjacking scam on Facebook that spreads via the social network's "share" feature and could be costing you $5 a week. The new malware is similar to a s... - Facebook Warns of Clickjacking Scam (PC World)
PC World - Security firm Sophos recently discovered a new clickjacking scam on Facebook that spreads via the social network's "share" feature and could be costing you $5 a week. Â The new malware is s... - New Facebook Clickjacking Worm
Graham blogged about a Facebook clickjacking worm back in May which we dubbed Likejacking — for a number of weeks the threat ran rampant throughout Facebook. Since then, it has calmed down quite... - Google+ Project Vs Facebook Safety Features
Today there are many social networks on the internet and everyday new ones are being introduced with new and better features. They have unique and useful features, which makes it easy for users to rem... - Facebook scammers go back to using Javascript
Facebook scammers know that in order to keep users falling for their scams, they have to use a variety of approaches. For example, there was a time where rogue applications were the scammers' preferre...
Posted on 10 February 2011. Tags: Clickjacking, Dirty, Facebook, Italian, schoolteacher, undresses
