Carlo Orlando has written an interesting piece on Infopackets.com about a new app (free) from Norton to protect you from “Lifejacking”.
“What the heck is that?”, you ask.
Likejacking, a form of clickjacking, is a malicious technique of tricking users of a website into posting a Facebook status update for a site they did not intentionally mean to "like". The initial concept and code for likejacking were created by a Black Hat World user that goes by the handle “thefish2010”, supposedly.
In response to this malicious practice, Norton has created a new application for the social network that will scan the newsfeeds on your page for malicious links. The best part is that the application is free of charge. This came about because Norton collected a sample of 3.5 million video posts uploaded onto Facebook in early August. The results showed that up to 15 per cent of these videos contained a "likejacking" attack in some form, according to allfacebook.com
To increase the chances of an individual clicking on a lifehacking link, the perpetrators of this scam created compelling taglines. Among the most popular "likejacking" scams is a video entitled "This man takes a picture of himself EVERYDAY for 8 YEARS!" complete with an accompanied link. Naturally, the link is corrupt, taking the user-turned-victim to a blank page with only a tab that reads "click here to continue". Clicking on the tab publishes the original message onto their own Facebook page, complete with a "like" notation, which effectively recommends the unwanted link to all of their Facebook friends. There haven’t been any reports of phishing, or malware installation yet, as far as I can tell.
The Norton application scans links on your page posted within a 24 hour window and members can visit the Norton Facebook page to access the Cybercrime Index, which is updated daily to reflect the threat level for each day.
The app is available via Facebook.
Source: http://www.infopackets.com/news/security/2011/20110905_free_norton_app_targets_malicious_facebook_likejacking.htm