A new spam that preys on people's curiosity is circulating in Facebook. Today, E Hacking News has come across a new spam campaign. The spam post has a picture of women that looks like a video.
"she went inclusively nuts and lost all control of the razor-sharp axe Well, Watch what happened..in..this..video:_:: [Tiny_URL]" The spam post reads.
 |
| Facebook spam post |
|
Following the link provided in the post takes the users to a page where it says "She did this at the tender of age 15" and the site displays an image mimicking an embedded video player.
After clicking the image, i am really inspired by the clever work done by the CyberCriminals. When a user click the image, it asks users to press three shortcuts one by one - Ctrl+L, Ctrl + C, Ctrl +W .
I know what the last two shortcuts do but not sure about the first one. I've managed to find the usage of the Ctrl+L shortcut in browsers. It is being used for selecting the URL.
So the shortcuts are for selecting©ing the url and closing the windows. But wait a second, i failed to notice one thing. When i clicked the image , the page opens a new window.
 |
| Small window -1 |
|
 |
| Small window -2 |
|
Interestingly, the new window is so small and not visible. So pressing the shortcut keys copies the URL of the new-window and closes the window. The URL contains the victim's authentication token.
A victims who fail to notice the window and follow the instructions soon find them-self victim to the Facebook spam post. The spam will be posted in the victims' wall using the hijacked authentication token.
