A new spam that preys on people's curiosity is circulating in Facebook. Today, E Hacking News has come across a new spam campaign. The spam post has a picture of women that looks like a video.
"she went inclusively nuts and lost all control of the razor-sharp axe Well, Watch what happened..in..this..video:_:: [Tiny_URL]" The spam post reads.
Following the link provided in the post takes the users to a page where it says "She did this at the tender of age 15" and the site displays an image mimicking an embedded video player.
After clicking the image, i am really inspired by the clever work done by the CyberCriminals. When a user click the image, it asks users to press three shortcuts one by one - Ctrl+L, Ctrl + C, Ctrl +W .
I know what the last two shortcuts do but not sure about the first one. I've managed to find the usage of the Ctrl+L shortcut in browsers. It is being used for selecting the URL.
So the shortcuts are for selecting©ing the url and closing the windows. But wait a second, i failed to notice one thing. When i clicked the image , the page opens a new window.
Interestingly, the new window is so small and not visible. So pressing the shortcut keys copies the URL of the new-window and closes the window. The URL contains the victim's authentication token.
A victims who fail to notice the window and follow the instructions soon find them-self victim to the Facebook spam post. The spam will be posted in the victims' wall using the hijacked authentication token.
"she went inclusively nuts and lost all control of the razor-sharp axe Well, Watch what happened..in..this..video:_:: [Tiny_URL]" The spam post reads.
 | |
| Facebook spam post |
Following the link provided in the post takes the users to a page where it says "She did this at the tender of age 15" and the site displays an image mimicking an embedded video player.
After clicking the image, i am really inspired by the clever work done by the CyberCriminals. When a user click the image, it asks users to press three shortcuts one by one - Ctrl+L, Ctrl + C, Ctrl +W .
I know what the last two shortcuts do but not sure about the first one. I've managed to find the usage of the Ctrl+L shortcut in browsers. It is being used for selecting the URL.
So the shortcuts are for selecting©ing the url and closing the windows. But wait a second, i failed to notice one thing. When i clicked the image , the page opens a new window.
 | |
| Small window -1 |
 | |
| Small window -2 |
Interestingly, the new window is so small and not visible. So pressing the shortcut keys copies the URL of the new-window and closes the window. The URL contains the victim's authentication token.
A victims who fail to notice the window and follow the instructions soon find them-self victim to the Facebook spam post. The spam will be posted in the victims' wall using the hijacked authentication token.
