Facebook sues 'clickjacking' spammers

2012-01-27 19:42
Seattle - Facebook and the state of Washington sued a company on Thursday they accused of a practice called "clickjacking" that fools users of the social network into visiting advertising sites, divulging personal information and spreading the scam to friends.

The scheme, also known as "likejacking" because victims are tricked into using Facebook's "Like" button to perpetuate it, has grossed $1.2m a month for the Delaware-based firm, Adscend Media, according to the state attorney general's office.

The plaintiffs charge that Adscend profits from the scam by collecting money from its advertising clients for every Facebook user unwittingly misdirected to a target ad or subscription service.

The legal action is believed to mark the first time any state government has gone to court in a crackdown against spam spread by Facebook, the world's most widely used social media network, said Paula Selis, senior counsel for the attorney general.

Representatives of Adscend and two co-owners also named as defendants could not immediately be reached for comment.

Pervasive

Two separate but similar claims filed in federal court by the state and Facebook accuse Adscend of violating federal and state statutes outlawing misleading or deceptive commercial electronic communications and unfair business practices.

Selis said schemes such as clickjacking had grown more pervasive, and that millions of Facebook users had probably been exposed to Adscend's spam.

"Security is an arms race," Ted Ullyot, Facebook's general counsel, told a news conference at the California-based company's Seattle office to announce the lawsuits.

"It's important to stay a step ahead against spammers and scammers."

Attorney General Rob McKenna, a Republican running for governor, said Washington state was taking action because "we've brought other cases like this and, more than any other state, we've developed technological and legal expertise" in the field of cyber fraud.

As described in the lawsuits, the alleged scam works as follows:

Facebook pages designed as "bait" are disseminated to social network users as posts that seemingly originate from friends, offering visitors an opportunity to view salacious or provocative content.

Advertising

That viewing is contingent on completing a series of steps that will supposedly unlock the content but are actually designed to lure Facebook users to other sites, where they are tricked into giving away personal information or signing up for expensive mobile subscription services.

First, the victims are encouraged to click the "Like" button on the Facebook "bait" page, which then alerts their friends to the page's existence, thus helping propagate it.

Then they are told they cannot reach the content without filling out a form for an online survey or advertising offer.

In one example cited, the "Like" button is overlaid with a link labelled: "This man took a picture of his face every day for 8 years!"

The promised content often does not exist, and the user instead is directed through a series of prompts taking them off Facebook and to a string of ads and subscription offers.

In some cases, a hidden code embedded in an enticing link on the "bait" page activates the "Like" button without the user even clicking it, sending it to friends' news feeds.

Selis said it may seem unlikely that anyone would click on such links, "but unfortunately they do".

While the number of Facebook users actually scammed by clickjacking is not known, Selis said investigators had determined that some 280 000 users visited the locked content pages of Adscend during February 2011 alone.

"So we know there are probably millions of Facebook users" exposed to the deception, she said.
Read more on:    facebook  |  cybercrime  |  social networks

Join the conversation!

24.com encourages commentary submitted via MyNews24. Contributions of 200 words or more will be considered for publication.

We reserve editorial discretion to decide what will be published.
Read our comments policy for guidelines on contributions.
NEXT ON NEWS24X

linking and moving

2015-04-22 07:36

24.com publishes all comments posted on articles provided that they adhere to our Comments Policy. Should you wish to report a comment for editorial review, please do so by clicking the 'Report Comment' button to the right of each comment.

Comment on this story
12 comments
Comments have been closed for this article.

Inside News24

 
/News

Book flights

Compare, Book, Fly

Traffic Alerts
There are new stories on the homepage. Click here to see them.
 
English
Afrikaans
isiZulu

Hello 

Create Profile

Creating your profile will enable you to submit photos and stories to get published on News24.


Please provide a username for your profile page:

This username must be unique, cannot be edited and will be used in the URL to your profile page across the entire 24.com network.

Settings

Location Settings

News24 allows you to edit the display of certain components based on a location. If you wish to personalise the page based on your preferences, please select a location for each component and click "Submit" in order for the changes to take affect.




Facebook Sign-In

Hi News addict,

Join the News24 Community to be involved in breaking the news.

Log in with Facebook to comment and personalise news, weather and listings.