Loading...

Share Baiting and Self-XSS are Ways To Spread Facebook Scams

If you are a facebook user then you find many times some irrilvant walls post with a catch title such as 98 Percent Of People Can’t Watch ...

If you are a facebook user then you find many times some irrilvant walls post with a catch title such as 98 Percent Of People Can’t Watch This Video For More Than 15 Seconds, Father gets TOTALLY Embarrassed after entering Daughters Room and many other also. These Scams are attached with either a video or photos so maximum users attracts.
According To Matt Jones, who works with the Data & Security team at Facebo


ok to combats these Scam attacks, There are two types of Attacks which scammers use.
1. Share Baiting
2. Self- XSS(cross-site scripting)
1. Share Baiting:- Share Baiting is pure Social Engineering attack. In the Share Baiting scammers attracts Facebook users with a video and title such as 98 Percent Of People Can’t Watch This Video For More Than 15 Seconds  when any user read this message they are very eager to watch that video and click on that spam link.
Then they are redirect to spam website and there is message like that if you are in 2 percent click on the play button, so when you click on the play button it will ask for to share this video and we share this video without think a second because we are in hurry to watch the video and so through this video is sent to walls of our all friends.
2. Self-XSS(Cross-Site Scripting):- Self-XSS is combination of both social engineering and browser vulnerability, take a look how this works.
Suppose one of our friends are affected from this scam and this scam are showing in our walls, we see that one of our trusted friends share this video then it might be something new and we click on that video and then it show a error message like this Before you can watch the video, you must complete a quick security check  and when click on continue button it will ask you to paste some java script code on address bar and press enter and then this  malicious code are executed and it auto post this scam to your walls and redirects to the scam website.
He also added that Google Chrome and Safari browsers are susceptible to this cross-site scripting (XSS) vulnerability while IE and Firefox are relatively safe.
So Share this post with your friends, so they also safe from these scams.
Reactions: 
social networking 4416494199459423970

Post a Comment

emo-but-icon

Home item

Follow by Email

Recommend on Google

Advertisements

Advertisements

Popular Posts

Random Posts

Recent Posts

ADS

eXTReMe Tracker