Network Security & Hardware - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Rogue Facebook Application Uses Fake Terms of Service Alert to Target Users



 By: Brian Prince
2009-02-27
Article Rating:starstarstarstarstar / 16


There are 8 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
For the second time in less than a week, Facebook users have fallen victim to a widespread attack due to malicious third-party applications. The latest attack is sending out notifications that users are in violation of Facebook's Terms of Service.

For the second time in less than a week, Facebook has been forced to squelch a rogue application targeting users of the site.

In the most recent attack, Facebook users receive notices stating they have been reported for violating Facebooks terms of service by someone in their friends' list. A link in the notification leads to an application called "f a c e b o o k - - closing down!!!" being installed.

The application in turn spams messages out to the victims friends that are similar to this one:  "[Friend's name] has just reported you to Facebook for violating our Terms of Service. - This is your official warning! - Click here to find out why you were reported! - Request Facebook look at what has happened and rule immediatley."

Resource Library:

According to Sophos, Facebook appears to have removed the application. However, the challenge of what to do about securing third-party applications remains. Roughly a week ago, users were hit by a similar application called "Error Check System," which posted fake error notifications in a Facebook user's profile in its attempt to spread.

Whoever was behind that initial scheme did not stop there, though. If victims put the phrase Error Check System into a Google search, one of the top results led to a site that attempted to trick visitors into downloading rogue anti-virus software.

While security vendors offered no numbers to indicate how many users had been affected by the attacks, researchers at Trend Micro noted this second attack caused enough of a stir for Facebook users to create a Facebook Group for those hit by the malware.

One of the problems is that Facebook allows anybody to write an application, and third-party applications are not vetted before they are made available to the public, blogged Sophos Senior Technology Consultant Graham Cluley. So, even as Facebook stamps out one malignant application, it can pop up in another place like a poisoned mushroom with a different name.

Facebook has repeatedly said that the responsibility for securing third-party applications lies with the developers themselves. However, some security pros fear that rogue applications will be an ongoing challenge for social networks.

Surely these two events in just a single week mean that its about time that Facebook reviews its application hosting policy, blogged Trend Micro researcher Rik Ferguson. Prevention of rogue applications with extremely dubious intent to propagate freely within the site is needed. Users are advised to exercise extreme caution when surfing.

 





  Reader Comments: Rogue Facebook Application Uses Fake Terms of Service Alert to Target Users
>>> Post your comment now!
FB Apps (or Weak Apps vs. Intentional Malware)
While FB allows anyone to develop and deploy 3rd party apps for their site/service, one needs to remember that not all apps are benign from the...
Posted At: 08-16-09
By: J. M. Schneider
A user comment on this article
Here's one I got.....In notifications XXXX XXXXX (Friends name) just tried to report you to Facebook support, as they said your profile has...
Posted At: 08-16-09
By: Anonymous
It's another one.
Yes, a lot of people are getting that one now. It's just another one of those spamming third party apps.
Posted At: 02-28-09
By: Remi
They deserve it
The religious zealots deserve it as they are the most judgemental in closed spaces
Posted At: 02-28-09
By: pooky
closing down
I just got this notice to that a friend of mine reported my facebook content offensive. Is there something more I should expect to happen?
Posted At: 02-28-09
By: Anonymous
A user comment on this article
Its interesting that you mention that Facebook had removed the application by the 27th. I guess they will start getting complaints about it again, as...
Posted At: 02-28-09
By: Mark
Facebook account possibly shut down because of religious content
A friend of mine got his account and all his content on FaceBook he worked for many days deleted. I've known this guy for many years a totally honest...
Posted At: 02-28-09
By: facebookprotest
>>> Post your comment now!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Brian Prince
 


x}ks8q8c"#Mɖhc[^K7[HH"$e[wro7%?2sTl@_h4?{$3G3L{BcnQ?sOuޚ'w6;R(%GFgP+N-w5 E]0eNFNv@\}@^sFwD%x_'Щ=ѩ&€wɔiPل͙ؗ6}^~b .pѱ ⌳Qm/ xyK`aFNv@ߩV9AÙML}! {|HJKd/B(?cs暿#=z'Ț?=i@aUw0vK]K[7SѠ*v25vn/@Z#\Dȁ\nh=7d9';{$-XdUjL wb#2R!1;T*%T*63-晚u@|͖|cXulAf@h ɠݢq!ʟCp`eŭFWʉF=2}hG' :a;6]fu~ƷHo&3C27 pW&X∍YZ0wC&>dPtpXdq#}9e4nMަ[7GR.ZpT*B~d*^ߙiMTeםٯ7zskPQTP/.s$QwÑ7ܖ4a*λ'W~t@.z;ggQa'H|Aw"DT-JR,͒DCaOmdAH{|T獒Awjy%R/ՋjA=R$ڑf1S$XIcF/XPGb9vmҹt.tN>_u;H>߉ekby 1(ժ=TRJg#=ޚ:׋%uݻiw>wO:}$/#t6+?f'Z-o7#?~f[dP[w8LwZ\ܯH ?{'/2 Ogdx"A247QZh,w.r$db&JGX ,>JAͼ94oo 3E@;- uj 0k:u6kiJ5f!`FܼmN$9ȡȟ恒k4R\ 9lb vfyP:&,|YB* b$rݢQ3>L˅B""xV3 E94>BBp4]uڤٻyoUbyƆƇj%",$ uuTStTzl:>JjjG%xPW G8ʍ??5m!S[ö@ .ks+k{< }0t@6/=3jYcvi| Q}Цޡ`>5 @ L^a V834Cuӹݰ=Uԇ9ȩu0CA 6]LRmb;>t9 PhR0<sx7LnMσ5I#ˋƠ` VPCh9N@tmS(|` ڭfZȴc@xFXvK76nLSS \ eBC`9sM/Xg5׵Lj{ TF`ߐ^86h;Ͱ&PoTM?>yBOM\naDP$7:O̗HږiE-roBo+څP!_.dI_fMblȌu>I!VB!7OH wf@nmHݤ|r:#wTBWR518 FLqK)'SgFFJ V zh'Nѫ>Ug plTo-V,~%fsP.oWur@_F&ۊx A-ژ WZڄ"JMP>L2Cɣ($mU2LInQx{8dO1k}0)\TBZȄe:iwjSmπ|R9)]hpܩHhS+maQ*5%>ka@/ű@b=-\TWաc-f˫ʰY]48q6O:z+@oLt Dm Ǧ#|ZlB{Os=1}Z`"o@dX)~l"zd\8˰De9F3v,˹ tf/Hr]j)ernpx p߄SsDl8$T Paǎ73MCđaNjްܧ^hL`섐+e809#-Ko3>;ĢTQۂ*v J(RDZޙ0@Sykv{0$5`n\>(gpH,`_ B&Z1-[*:#;$ft߀bIt?I M!RBs]}=1 *3{x&Ukb{jEQգRVQY+7cUFQH.aCg<ꗧu`ޝ^3}h1{K>ה  `3txKm|`x䓋 ,` |/,ybȗ:zo|BZ_,ŨOMqё,ug¸ZAU[+3؝?F'E{耰⢉!H;3E&pӚN7ހ jZ#U ~JIF G_pxP4] `9F0f_oa7X[ ȟRkE}vWC{%jf#R @ j` 9v}G(Tb(ō'j隱AqC|ٜm!zUqʀWIe& 24ڭ/[d''WTJ湛>7ýϼt:|8'(kZ }2[; UɵqdF&}G㇮j91ߗ F)D|փ3(Klm砦3fuqï5P?y Jm=McX]X wmUS7ѱdNk|oR3-3#!׌X;,v'fu{P&!<,`x:/\Ůa-@.(KO6l䄇%b "9&K8.zGdDRj -XM_gNUXM,aTKjp9҂ NPS*GzW8K=X,ɝxAc'c\h b2Z҃j_j 1C赋*9MLtu  B LKBb;w?mͅ57gXN@B59ԋ!I#̸y0×w' o@@lB-5iRg u;a޺ͭ_&IdY{!keH@X|P~#+jHԚkEI= O} QǭˤӧG7!g3." 7P)߱q놚1ɹT)j l[-W+B!aq]C0 HRWD( ,E~W9ـo9 |R)T*Gr2RDBRNBq<8N)I4C^Ja’;Tnr\&G+#I _qn0Db*nLpGGssbh^f>^%&O!(0IH_dpSi;d':uvr>8^<+fۤI.?+uu=pH*۪=] y!s1@cf^;.y렘ȇNAt~}4.ЇR!)X||tі~wR4 jGYk.NE i펇{-~ cl9waR)%Z) [viaEn%e9rdJ)%SBt02L PU7,O$y=%lQ2 (KBh%lbTHGoOٺ6<1ޥ]晿LƗH|͖&ė4 ݓY) -|8SB[(H Tդ Zz]UH*? tH1|zC>?uUbf=z@L{'q?Kl82UtsX6rw{B s?ݡMO6r=ICo6ϴy>% zv`蹳 =`}dž-{oCЂ'n` \_'2>6,eMϝB]X3;a9z膧&ЇJzDECXS U  htD\K ;1fͭszJAU>}s=],?WgxS&Be;z{7 "$DE)($,\a79AWΌob1bw x㙾Hչw-d6'fY5~= ^h4_PϟM#&dRg MbEa_n4~AoS5dgcYP8Of 83@ HX:2ٝ6  q;F1ucϦih/a1рܒSC"7dB},yjP 7wY% Pp̭tmt&1aBȂlf@^j Մ@G[vb8NymXi첎|>Up(#x;ϊأwTZssVŦdQa7vwRjY*왉Dɒ+v!oWH\+D,$F0-zʵR3͟%sцle \LEʧC܈S8h8:H%9JoPB7cǧ٠ Y &q޵'qbymLZ^-'&W-|Q4,7o[ d׼C&K[> J#YT(+ݜO.lI !aB4ͳﳢ062V$G5sJѪԖLK*&t姅.f !h!$!-Dῇ)FR ǣ#֣on[s5xd?IQ$6y4/"?5s/+1 44q {! fZ:Jh`OYY[HJUT3(LA FoF$ V$\1q3$jUK-`,`va- Mc-gY,lS\z$CHI'$1lR渼B)"|'!|f}a*D_>;"44#-Päp^J V88s}*a?L ՙ:ؘb.*uUdO|lT)F_O!#^zMַ LI=&1E* cHJUQ *p K\•.Y"0ȯL\>=!fc|I2<vU8YR$x`JA|NM~4ϖZ#g12RV2L)/D # ap{]G"DÎCoV9%>X)'5sopPS/q!w_w_w_w_U+j|ձz~&w/G/w̗8 7-˜P[K"$7 $ -_#ʣ0 P;Hjl۬o`-jLτkg%>\ Jך//A5IY^O\QC0Jly}r ʯic}#fTiiܣR R  <qGb B$D-HFb<]KrQj>-iSERڦK)Z,wgwf$apz"ҚjK:-?|v5iW gHg gq7cT*j} bO@x L3>'"t=eKJ<3Mp:Ny%e>j3oԾK'=c#O-.[Hr\5 ux'0$Lϊ%$ 5Ȗlܥ'-2-qV x$'cx 3h_!Aݸݸݸݸލ[_7+SSM#ǹ5f%ڷ` `VHfꇀ!`Q7=o-:p\) cƲjchqp«G=cmn[`k_Ѡλw8 P#:m^^ <!xsˊA% c x2Ꭸ7E #!#TiO!vIt`4wX[m9^S}<7-ޚRaHMlNkFkwp4lfk7 e  Xr?!]c94p!$񛄿ꌻG<C#m>Tcg+(:,Z'}n>p {- hb I$%?[?=pXd3\,5!pzKԭO=[=l_Ux|\Kɀ{7=0f[,S&Lm!~0mdlc"{:?t`GxK~sRYǜIcT<RPi!Fv׏{Kb+J7;F$qhkkj55V^ qEMaZrF-?xUHH^X0;JpD]dbɠ  /_7`;LVf \sj6 b6M;E- }L1N[Z+9>%KRku+N tc [cۛ#UA2AK5nA*R!Ѥ9^@Qͧ5 Oj6j=!Ƀ`58? mvn&T.m']қ≠DU*˹unȓP}ʳ'-* ;,Ot%NY;#ZS԰p-|ri?*ܺzB9wIfȹZZ#X(+J Pc0_ #+5PUk%r&0 ExJϮ̈́R<7'"!F~ Փ>/,Qu$vy)eTUR#h0pX*l@EL>S3'b#?(vBAf?nD>`|}.[>V5V]K>q@. qL.XC@ݹHm+nn@BęvtBΜDmx6-Sý,&HPjߚc#/ն멑ў`/,9)s_i\d3+nіmmy.G4K,2;k4]٦v lӉHߥ`߷b~u9RG6يb ^q]0] (bZ3ZIpxu!.N~.=_%ʘs7O!QF P#SC,6M$Aeȃ5T?0м' )VZaQb+;Z@kbK=ҡH+qܑ5bI-@+>TN o{'& )<]Сܛ ꁢߒq4<~ڊx!h¼ϴHbSx ؛ḁ7f?= .N9Ckǃ"Ba=X@:>IoH`!]U# `xNfꞑu3taC_8s&Kz`#omAG#KGa &G ۠'@vQ]Q 2(]Q]můֽ?#.7L mS4-l \ZS4c׭ɿǫ~^(b#{A~b #:́ lZA *F(ЄG#Os3Uϸv:sxXm!a 6")aQH'i֜iĄTl!׽dlUo%P`qT|8snj=J<|ܗHG寀QRtQ:.( o%H([PXP؟?pk2'TJTmn$:s+%̌S,0u- .E.ӻq{4+۠50= 0YK7`C'[B@Lg>򽉑:ς)s)aR;<Q@<Pl 4'7&,H릧ou;5u_fBp),f,])B9|Ե>\gޕa)豢 ߺoSwV7+X5z+i+*K9I͑1;^ni`50 }a3B7kh]^}!+"W:\u/9oWj(;urһrڽ\^u/F%|j%<6/ v(P^;NSʙvoQ{¥,% Yw"f<3<>G/2?geCyF9E^\dE@2OK/C\}\f%Uaa7cs'O?g>g3s::~3/$)CAy+Zpzz;9(/Rz UKӌ:gȳJ3V^V`{J1{+~W_ {yk'R+ ]Q%<3Lk[M2}Wc|u(X2M*!#(78%Y}MJ 4tk 7b[y@Yp&}:=Wv l+Jy._[nNJ>S\ȜHqaN@B0cFUy "\ ̽p'eybAV̤-}@#m~̬(GUtsn v?,v3yYbć¸x&@_?&7SW'.pyk;ُϋGkwյq@5AfПb 9y?&OxVf}4;(u*5OKWXB-Jaġ]-Ff>|=Շ^V+_p3Nlc}|;su:^wC{>k'K[ }ςoDVN)pB ^aɠ1zI]vZ{h!+ 7\z8&ݡf uɹT)jIoR-W+俒+D2Lz@tb3R 5W9 طVR`"! *s>P`26UJ` Pz!J1 4c֭dK1BDO"׏щGFC$We",e nQKp$v@}pTR Psoy =u XImR?r{I2hؐCK؊9N-= N>@O磌Ù۟X&38W "Z-7'hlգ{h9ĉiSrO?g)b|337rHτ[6пCS%(ML)}o$dC k`V{Ϲp-#2O,UE,%w|u_-c˃]"s/r:=fGޏ" (luy5M2t(;(LEVTɘ_.>Lw uuxƍwu0{98𰙄i̯6;[+fAL UhkоxN i4kH-'cB诿aXkt(J7BAbrwZf$W"BrigV=plKAfz5sڹ Y.Zݨ3K~Ex\ Hn<%m1ƚ1vctN5v]/I>3=Ks}v`礿Lx }Ƈ ?>KGJ Ǝ$z sb{ SdW1~'ת1ѥOt$,Z8:Z5m$$&b3@ gYlVxRBZ9=v S%JvM^ <}*u b9?vU[qojTL,sD?>K:!;31Q1jkI/?H3軱Wx&%}YQ v.ykH#eUI;.w. %Cb9G8]! MAE3`AŮТ#J)n9vaT)^L9DNˠvSɿعsӘ1L1А8v2COA3t ϭ+e[a O2CZ24@ خ;Oq^G 3>Ƌrx{GoZr1$(+nOvGD '>6'كl4hM@(_Gْk0F-߇Fq: /A.Sl2qY^4@FWD0;"ZYc"sE%X,8/# uf_ƝMQh| 9,Bux [-] E peӵ/y2 WcVJRX}P/(W:OOgsZ %.1_Hv›*} X^c 0,:0%9-E6<:=܈x~;ͺg 3HTx.X?l׉Q#iȹ+` jD]YtAwT \7oQaWO\#{@760* <򇸝9-o@>{~w!Ǹ 0tczw^?-lI12,2"k,Ma4,Lb5"[]QI(`vX33},@a)5ZBO PoO80Ux|-h\}[M_\:/8LgѼ8"H+x7lw|pF14Mo,gkVTF ]L<AC9Xqk @c݄6:L]Ll&j1Bi>c1w1LX+0_mkASsDeU|t#GYEL`&;]+N%t&ж?TH0H6c?rf 7@ýō]Nc"a?<#/ah~Q> χ"@Ă+"e}q$YY/7L~s Whc<[Wy &Fk ED;idMn+:cQEae=JV01{6JܖmJHQN9KIk^iLNƇڱ wm<lx61ͽq%+