Categorized | Facebook, Security

Facebook Scam Spreading: ‘Hey, I just made a photoshop of you, check it out’

We’ve been monitoring a new Facebook scam that is spreading via Facebook Chat messages.  This particular scam usually begins with a chat message from a friend like the one below:

Example of the Facebook Chat message

Example of the Facebook Chat message

Once a user clicks on the link, they are redirected via the site used in this campaign (hxxp://millium.co.cc) to a Facebook Application installation window.

Facebook App asks for access to Facebook Chat

Facebook App asks for access to Facebook Chat

The reason this is spreading so quickly is because the Rogue application is asking for access to Facebook Chat. Once the application is installed, it begins spamming your Facebook friends/family members with the same message seen above.

After the application is installed, the user is redirected back to the site above and presented with the following image:

Click on the picture to see yourself in a sexy photoshop!

Click on the picture to see yourself in a sexy photoshop!

Your attention needs to be diverted long enough to allow the message to spread to your friends and family. Clicking on the photograph takes you to a Graphic Design blog entry that contains 45 Strange and Funny Photoshop Manipulations – none of which feature a photograph of you.

This scam is spreading rapidly.  Over 88,000 clicks per hour, currently sitting at over 500,000 clicks today.

88,888 Clicks Per Hour

88,888 Clicks Per Hour

Over 500,000 Clicks Today

Over 500,000 Clicks Today

At this point, we do not know what the end game is for the scammers here. The destination site results in no malicious infection and does not lead to a survey scam. Having access to a users’ Facebook Chat could allow the scam application to be used to send out other messages.

If you or anyone you know have been tricked into installing this application, you can start by removing the application from your Facebook profile.  Visit the Privacy Settings page and click on ‘Edit Your Settings’ under Apps and Websites.

Remove the Rogue Facebook Application

Find the Rogue Application under the Apps and Websites section

Once you’ve located the application (named ‘millium’) in the ‘Apps You Use’ section, click on ‘Edit Settings’ in order to remove the application.

Remove 'millium' Rogue Facebook Application

Remove 'millium' Rogue Facebook Application

Removing the application is one thing. We encourage users, those who have been tricked into installing this application and those who haven’t to reach out to family and friends on Facebook and inform them that this scam is spreading.  Knowing is half the battle.

Related Posts

Posted on 04 April 2011. Tags: , , , , , , , ,

The above information is reprinted from and copyrighted © by M86 Security.


Comments are closed.


Security Status

Beware Facebook "Timeline" scams http://t.co/W5EW0cVv
5 months ago
Nigerian government (unknowingly) hosts phishing website http://t.co/uQd42ENw
5 months ago
PCMag Awards McAfee All Access its Editors’ Choice: SANTA CLARA, Calif.--(BUSINESS WIRE)--McAfee today announced... http://t.co/FakV7Vd8
5 months ago
RT @mikko: I hadn't noticed Google Maps has added 3D models of buildings. Here's a (very accurate) view of F-Secure HQ in Helsinki http://t.co/IKfAZlak
5 months ago
North Koreans aren't known for their online presence. But others may be lured into clicking Kim Jong-Il 'videos' too http://t.co/yQOon6YT
5 months ago
How to Protect Your Professional Reputation on Facebook Timeline http://t.co/I4bcR2VN
5 months ago
This is pretty impressive from @Softpedia: Facebook scans 2 trillion link clicks and blocks 220 million posts each day http://t.co/vKsn9gNl
5 months ago
Need for integrated approach to security in industrial control systems - http://t.co/tPBCNOow with @PikeResearch
5 months ago
Some free-based music we play at work http://t.co/xu5agZfc
5 months ago
Japan’s cyber defense weapon: a virus. It includes quotes by @Luis_Corrons via @InfosecurityMag
5 months ago