New Facebook clickjacking attack

There is a new Facebook focused worm circulating around. Currently it seems that it doesn’t have any malicious payload, except spamming via posting messages to the people’s Facebook walls. The message reads:

“try not to laugh xD http ://[random number]”

By clicking the link, users were forwarded (were, as the site is now offline) to a fake error window on By clicking anywhere on the page, the script in the invisible frame would activate and post its spam to the user’s Facebook wall.

Image courtesy of F-Secure

Don't miss