Facebook's "Secret Crush" malicious widget tricks users

Discussion in 'malware problems & news' started by ronjor, Jan 4, 2008.

Thread Status:
Not open for further replies.
  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    65,832
    Location:
    Texas
    Story
     
  2. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,982
    Location:
    California
    Last year Facebook announced their third-party developer platform. I didn't pay much attention to it. I should have.

    Facebook Launches Facebook Platform; They are the Anti-MySpace
    http://www.techcrunch.com/2007/05/24/facebook-launches-facebook-platform-they-are-the-anti-myspace/
    Platform Application Terms of Use
    http://developers.facebook.com/user_terms.php
    How will someone be able to trust any third-party application (executable) that appears on the site? My one user of Facebook - a teenager - knows not to click-to-install anything that pops up on the screen. But this is different.

    If you tell your users to say "NO" to everything, then they are deprived of part of the site's activities.

    I suppose running the browser in a Sandbox will be one solution...


    ----
    rich
     
Loading...
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.