Clickjacking on Facebook – how to protect yourself

It has been around since about 2008, but it´s getting a lot more press these days because of a new wave against Facebook. This article is about clickjacking – and how you can prevent yourself from being one of the scammed.

Clickjacking is all about getting innocent people to click on links like images and/or text that people really want to click on. The clickjackers place a transparent button on top of the real link so that it can´t be seen. Then when you click on the link you want to you actually click on another link.

In example the real and innocent webpage could have a link that reads: “Click here to see a video of a fluffy kitty being cute and adorable”, but what you really click on is a link that sends you to another destination that:

  • Tricks you into changing privacy settings on your Facebook account
  • Tricks you into “liking” something you wouldn’t normally like (a.k.a Likejacking)
  • Tricks you into adding yourself as a Twitter follower for someone who doesn’t deserve you
  • Tricks you into enabling something on your computer (such as a microphone or camera)

It´s important to keep your browser up to date. An old browser is a lot easier to hack then an updated one. It´s not only the browser that is important, also the plugins like in example Flash must be up to date to prevent clickjackers from hacking you.