More Self-XSS Scams Targeting Facebook Accounts
Attacker claiming on this case that they will provide a way to hack any Facebook user by following some simple steps but they are actually looking to run a Self XSS attack by urging user into pasting or injecting malicious code into their web browsers. the code will sign out the victim and ask the user to login one more time and here attacker will receive username and password for victim.
The posted scam looks as follows:
Hack any Facebook account following these steps:
1. Go to the victim’s profile
2. Click right click then click on inspect element and click the “Console” tab.
3. Paste the code into the box at the bottom and press Enter.
The code is in the web site: http://textuploader .com****/
Good luck: *
Don’t hurt anybody…
To avoid Self-XSS social scam make sure to never copy past suspicious links from unknown sources to your browser, you can also report the post using the small triangle tab in the upper right hand side of each post, and then selecting “Report/Mark as spam” from the drop-down menu. If you want to check the URL try to use a virtual environment with sandbox that you can find over this poste: http://www.sectechno.com/2010/10/03/playing-around-malwares/