Drive-by malicious downloads inhabit Facebook

http://www.networkworld.com/news/2011/100511-drive-by-download-attack-on-facebook-251615.html

Facebook users who clicked on ads on the website may have been subject to malicious downloads. Trend Micro reported that ads affiliated with a Facebook application would take users to an advertisement page but quickly redirect them to a website hosting the malicious content.

The reason this slipped by Facebook was primarily because Facebook only checks the validity of a landing page. Therefore, if the landing page were to redirect to a malicious site, it could easily slip through the filters. I doubt Facebook will take too much action regarding this problem until users revolt. Since users are too busy complaining about UI changes, this probably won’t happen. Like most free websites, Facebook makes a large chunk of money through advertising. Therefore, they wouldn’t want to put more difficulty on advertisers trying to advertise on the social networking website.

 

 

 

 

 

 

 

 

 

Advertisements

2 thoughts on “Drive-by malicious downloads inhabit Facebook

  1. Very true, Facebook is more about their UI than their security of users. I feel like Facebook should have some kind of review process of all links posted on pages and groups.

    • Since different sites are always being made and linked to they cant just keep a database of bad links. They would need to have people constantly checking out the validity of them and you can see how long and the amount of resources that would take. I imagine that users would rather have to deal with the risk then go through that kind inconvenience.

Comments are closed.