Facebook 'Likejacking': Funny Site with '15 Worst Construction Mistakes EVER!' Image Leads to Scam Quiz Sites

Facebook's popular 'Like' button feature is once again being exploited by scammers, this time with a potentially funny web site that leads users to iframe popups for the purpose of generating paid clicks.

Facebook's 'Like' feature is legitimately used by many large blogs and websites including ours, which allows users to place a link on their own Facebook profile of a post or story that they essentially 'Like' or want to share with their friends. Ever since the conception of the Facebook 'Like' or "Recommend" feature, it has appeared on several high traffic websites such as CNN.com and Mashable.com.

Anything new and popular on Facebook attracts hackers and scammers. Through new innovative features on Facebook, they find new ways to exploit a small percentage of the almost 500 million worldwide Facebook users. Facebook has had more than their fair share of issues this year when it comes to user privacy and security. Facebook Likejacking, comparable to Clickjacking scams, is just a new outlet for hackers to use for their scams and so far it is working.

The latest likejacking scam on Facebook that exploits the 'Like' feature, somewhat similar to the one we reported about a jacked link to a rock band singer's naked photo leaked, is one that appears as a funny website tempting users with the "15 worst construction mistakes EVER!" which displays a picture of two urinals placed very close to each other. The instructions printed on the image ask the users to click on the image for more. Once the image is clicked on, users are greeted with bogus popups, one of which is an online quiz, and then a 'Like' link is placed on their profile to share this same malicious link with other Facebook users.

Figure 1. Fake online quiz iframe popup from likejacking spamming attack. Source: zdnet.com
facebook likejacking iframe popup online quiz

The endless loop of popups from this likejacking scam can be rather enticing for some computers users as they are offered "free Facebook layouts" and even false warnings stating "We have been receiving a lot of spambot traffic from an IP Address similar to yours. Please complete a quiz to unlock the page" which is shown in Figure 1 above. Such a social engineering tactic is used by the spammer to collect clicks for a CPA (cost-per-action) program which is designed to generate money when specific links are clicked on.

How do they generate these CPA clicks? From you of course, by using their likejacking scam to redirect you to the site hosting an iframe that over-lays items such as a fake online quiz popup. Little do computer users know, hidden underneath the iframe (popup quiz) is the actual CPA program links that the scammers are attempting to generate natural clicks on. By thinking you are answering a popup quiz you are actually generating a click for a hacker.

Have you ever been greeted with a popup quiz or tempted with a "funny" image from a Facebook link? Do you ever click on your Friends "Liked" links on Facebook?


  • Adelaide:

    This is the second time I've been to your website. Thank you for sharing more details.

  • filly:

    Your style is really unique in comparison to other people I've read stuff from. Many thanks for posting when you've got the opportunity, Guess I will just bookmark this page.

  • ins:

    Generally I don't read post on blogs, however I would like to say that this write-up very compelled me to check out and do so! Your writing style has been amazed me. Thank you, very great article.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.