Watch out for these Facebook spam and scam apps

facebook profile stats_SCAMGiven Facebook’s user numbers, the fact is that hackers and malicious activity can infiltrate the site. As a follow up to our report on malicious Facebook hacks you need to look out for, Bitdefender helped pull together some different types of Facebook app scams that you need to avoid.

Warning: We’ve redacted the hyperlinks to the apps, but included the link in text form. Visit the sites at your own risk.

Change Your Facebook Color

change your facebook color

This Facebook app first appeared on the radars of security researchers everywhere when Sophos warned users that the app was a scam. This app claims that it can change your Facebook color but like many suspicious apps before it, it requires users to fill out their personal information and complete surveys, which earn the creators money through affiliates.

Bitdefender scrutinized the app and discovered that it’s more malicious than first thought. Bitdefender Chief Security Researcher Catalin Cosoi says that the app steals its user’s authentication cookies and even instantly creates dozens of blog sites using that person’s Google account information. These blogs are then republished automatically to the victim’s Timeline with certain friends tagged (and this helps to avoiding Facebook’s blacklist since each blog link is a unique URL) to perpetuate the apps’ presence and lure in more victims.

The creators of the app however are getting more sophisticated. The app is appearing in different languages, with Spanish and French speakers as its first international targets.

For your information, this is what you’ll see on the Spanish version:

Cambia de color facebook, tunealo para que sea unico con esta magnifica aplicación, serás la envidia de todos tus amigos http://colorearfb.com/)

In French:

Super, facebook a changé ! Je l’ai il est vraiment trop cool, si tu le veux Il est désormais possible de Changer la couleur de ton Facebook ici: http://2doc.net/4avip

Who Saw Your Profile

My total profile views today_SCAM

It’s only natural to be curious about who’s looking at your Facebook profile. And sometimes our curiosity piques enough to search for applications that help to surface this information. Unfortunately, there aren’t any legitimate applications. Really: If you ever see something advertising this ability, it is a scam. Like the Change Your Color app, the motivation for illicit users to create these apps is for the affiliate dollars and your personal information.

There are variants to this popular Facebook app scam, which Bitdefender provided us examples of below:

Who saw your profile

Example: WoW!! I Cannot believe that you can now see who has been stalking your profile for real! You can easily check who is spying on you at http://apps.facebook.com/fggtrtbr/

Timeline viewers

Example: Awesome! The Patent has been Approved! Beta is out for this application!!I can see who viewed my TimeLine this past few days.

This app would then republish the following excerpt and link to your Timeline to lure your Facebook friends:

Now I know who are my real Timeline Viewers! :P Thanks for developing this application! Check yours here! https://apps.facebook.com/timeline-voyage/

Profile view

Example: My total profile views today: Male Viewers: 43 Female Viewers: 29 See your total views and who is viewing you here: http://apps.facebook.com/gdrydrete/

Facebook Credits Scam

free facebook credits scam

Facebook Credits are the in-app virtual currency that gets you the coveted Zynga dollars in Farmville. Based on this, many Facebook credit scams will ask you sign up for the app to receive free Facebook Credits as compensation. Some scams won’t even run through a Facebook app in the first place. Of course it’s impossible to receive Facebook credits without paying for it so upon signing up, many versions of this scam will direct you to a malicious or fraudulent link.

Some of these apps will say the following:

Get your FREE 5000 FACEBOOK CREDITS! NO SCAM NO surveys NO waste of time no task its totally FREE! this promo is available for the first 1000 persons only… CHECK IT OUT ENJOY…i got mine and it works get yours here http://creditsoffers.blogspot.com.

Be cautious about what you click on

What users need to be mindful of is that by signing up for these malicious apps that appear in the Facebook App Center, they’re susceptible not only to sharing your personal Facebook data, but also their computers can be infected with devastating viruses and malware.

For example, Cosoi tells me that in July 2012 a link to a bogus video being shared on Facebook, when clicked would infect its users with a Trojan.Dropper.TQX virus. The virus stole information including Remote Access Service accounts, HTML content, running processes, passwords, and personal credentials. To manufacture a network effect, the link when clicked on by a victim would automatically be published to their own Timeline. Similar videos that Bitdefender has identified include:

  • Crazy brother rapes and kills his little sister – Shocking!
  • Woman kills own baby so she can play FarmVille
  • Stupid woman left Facebook video chat on and boyfriend saw her cheating with other guy!

While antivirus and malware detecting tools like the ones endorsed by Facebook or even Bitdefender’s own Safego will work as intended, the user really is the first and last line of defense. Contrary to the assumption that users won’t be duped by these scams, studies are proving that users are vulnerable, in part because we’ve become almost too trusting of social networks.

One of these studies headed by Bitdefender found that an alarming 94 percent of respondents provided their home address, phone number, while four of five respondents disclosed information about their family, parent’s names, and types of passwords that they used. It should go without saying, but be careful what you share and especially what you click. 

Social Media

Periscope tool adds guests to feeds so streamers can become talk show hosts

Periscope users can now invite viewers to chime into the conversation with more than just the comment tool. By enabling the option to add guests, livestreamers can add guests to the conversation, in audio format only.
Computing

Don't take your provider's word for it. Here's how to test your internet speed

If you're worried that you aren't getting the most from your internet package, speed tests are a great way to find out what your real connection is capable of. Here are the best internet speed tests available today.
Computing

Edit, sign, append, and save with six of the best PDF editors

Though there are plenty of PDF editors to be had online, finding a solution with the tools you need can be tough. Here are the best PDF editors for your editing needs, no matter your budget or OS.
Gaming

How you can share your best gaming moments with friends on the PS4

Check out Digital Trends' quick guide to everything you need to know to save your outstanding PlayStation 4 gameplay moments, share them online, and transfer them to your computer.
Computing

Speed up your system by tweaking the startup application in Windows and MacOS

Bothered by programs that automatically start when you boot your computer, or want to add a new one to the list? Here's how to change your startup programs in Windows 7, 8, and 10, along with Apple's MacOS.
Photography

Crouching, climbing, and creeping, the perfect Instagram shot knows no bounds

Just how far will you go for the perfect Instagram? A recent survey shows just how willing Instagram users -- and Instagram husbands -- are to climb, lie down, embarrass themselves or let their food go cold for the perfect shot.
Social Media

Facebook’s long-promised ‘unsend’ feature arrives. Here’s how to use it

Send a message to the wrong person? Messenger now gives you 10 minutes to take it back. After an update beginning to roll out today, users can now retract messages if they act within the first 10 minutes after sending the message.
Social Media

YouTube boss admits even her own kids gave the ‘Rewind’ video a thumbs down

YouTube's 2018 Rewind video went down like a lead balloon at the end of last year, becoming the most disliked video in its history. And now YouTube's CEO has admitted that even her own kids thought it was pretty darn awful.
Social Media

Snapchat finally recovers from its redesign — so here comes an Android update

Snapchat's drop in users after launching a controversial redesign has finally stagnated. During the fourth quarter and 2018 earnings report, Snapchat shared that the company is rolling out an Android update designed to increase performance.
Social Media

Skype’s new ‘blur background’ feature could help keep you from blushing

Skype's latest feature for desktop lets you blur your background during video calls. The idea is that it keeps you as the focus instead of distracting others with whatever embarrassing things you might have on show behind you.
Social Media

Twitter users are declining but more people are seeing ads every day

Twitter's end-of-the-year report for 2018 is a mix of good and bad news. The good news is that more users are seeing adds daily, the metric the company will focus on moving forward. But the bad news is that monthly active users are…
Web

Switch up your Reddit routine with these interesting, inspiring, and zany subs

So you've just joined the wonderful world of Reddit and want to explore it. With so many subreddits, however, navigating the "front page of the internet" can be daunting. Here are some of the best subreddits to get you started.
Computing

YouTube beats Apple, Netflix as the most trusted brand by millennials

The popular video sharing website YouTube climbed up in an annual Mblm study, moving up from third place in 2018 and coming ahead of both Apple and Netflix in final 2019 rankings. 
Social Media

LinkedIn finally gets around to launching its own live video tool

Live video is coming to LinkedIn for businesses and individuals on the site. The livestreaming feature is launching in beta in the U.S. before rolling out to the entire community.