2 min read

New Facebook Tag Scam Installs Fake Security Add-on, Bitdefender Warns

Alexandra GHEORGHE

June 05, 2015

Promo Protect all your devices, without slowing them down.
Free 30-day trial
New Facebook Tag Scam Installs Fake Security Add-on, Bitdefender Warns

Facebook tag scams have re-emerged, Bitdefender warns. Today’s scam starts with an attractive video capture posted on users’ Walls. Twenty of the victims’ Facebook friends are tagged in the post, so those who have not tweaked their privacy settings will be tagged without their consent.

fund2_fb

Once users click to see the video, they are redirected to a suspicious-looking URL which displays a spoofed Youtube page. If users click again to access the promised pornographic content, they are asked to download a Chrome browser plugin named mithv1.

A quick search on Google’s official store shows the plugin is posing as an internet security extension designed to encrypt traffic and “unblock websites”. It was published on the 4th June, which could explain the absence of the number of downloads – it is either very new or few people have tried to install it. Either way, this should spark serious doubts to any user. It’s pays off to do some research before installing anything.

fb_tag_scam2

The ones who install it are prompted with a login window asking them to register or login using a username and password.

fb_tag_scam

After submitting these details, a webpage confirms the successful installation of the new “security” extension. It seems the scam is targeting only Windows or Mac OS X users running Chrome.

final

Why are some add-ons a security hazard?

The add-ons are propagating the scam to victims. Since they reside in the browser, these extensions can perform any actions on behalf of the user, such as reading and modifying the data on the websites the user accesses.

Remember, don`t click anything that seems suspicious, take a careful look at the URLs! Hackers count on your curiosity to make you part of the scam. Stay safe!

Update: Facebook has removed the page hosting the malicious URL. The extension is also nowhere to be found in Chrome’s web store.

tags


Author


Alexandra GHEORGHE

Alexandra started writing about IT at the dawn of the decade - when an iPad was an eye-injury patch, we were minus Google+ and we all had Jobs.

View all posts

You might also like

Bookmarks


loader