The Facebook likejacking browser vulnerability


Facebook JavaScript attacks using a known scripting vulnerability in browsers doesn’t appear to be going away very soon (as the HTML specification actually make allowances for cross-site scripting). Facebook isn’t alone in attempting to address the malicious script redirects as malware writers know only too well that all browsers suffer from this scripting flaw. You don't have to be a hacker to succeed with this technique! Check out my post ‘The Facebook ‘Like’ button JavaScript threat is real”.

Facebook is unfortunate in one way, in that it is the most discussed website on the planet. So it ends up with lots of criticism when it comes to security exploits and privacy control. Read more...

February 3, 2012
Notify of

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Inline Feedbacks
View all comments
© HAKIN9 MEDIA SP. Z O.O. SP. K. 2023