December 9, 2016

Facebook Scams with Chrome and FireFox Plugins

Picture Source: Websense security labs

(LiveHacking.Com) – Security researchers at Websense® have discovered new Facebook scams.

According to the report published by Websense®, the attacker is utilizing social engineering tricks such as engaging video or offers of a free voucher to attract the victims to its scam pages. Then, the victims will be asked to install a browser plugin. When the plugin is installed, it utilizes a malicious script and the Facebook API to post the scam to the victim’s friends’ pages.

According to the Websense® researchers, at the moment, only Chrome and Firefox plugins are being used.

More information is available at Websense® Security Blog.

Facebook Adds Malware Detection In Partnership With Websense

(LiveHacking.Com) – Facebook has partnered with Websense (a  web security company) to protect its users from links that lead to malware and malicious sites. Now  when a Facebook user clicks on a link it will be automatically checked against Websense’s database. If Websense think the link is malicious then the user will be warned and offered the choice to return to Facebook, find out more or continue (at their own risk).

“Facebook cares deeply about protecting users from potentially malicious content on the internet,” said Dan Rubinstein, Facebook product manager for Site Integrity. “We are excited about our partnership with Websense to provide industry leading tools to help our users protect themselves.”

The use of Websense’s  ThreatSeeker Cloud technology builds on Facebook’s existing database of dubious links, with the idea being the bigger the blacklist the safer the users.

“Websense has been analyzing and classifying the internet for more than 15 years, and now all Facebook users will be protected by the same core technology that is used in the market-leading Websense TRITON™ enterprise security solutions,” said Dan Hubbard, Websense Chief Technology Officer. “Every day, Websense Security Labs™ works to discover, investigate, and report on advanced internet threats that are designed to circumvent antivirus products. By providing real-time protection from malware, spyware, inappropriate content, data leaks, and spam, we make it safe for people and businesses to use the web.”