SecurityHome.eu TrojanClicker:JS/Faceliker.D

Home / malware PDF

TrojanClicker:JS/Faceliker.D

First posted on 08 January 2014.
Source: Microsoft
Aliases :
There are no other names known for TrojanClicker:JS/Faceliker.D.
Explanation :
Threat behavior

This Javascript can combine with an invisible iframe, whose source points to the Fackbook Like button, and track your mouse movements so that it can 'like' content automatically and without your consent. It can also use the Facebook SDK for Javascript to automatically 'like' content on webpages.

Note: The 'Like' button is a Facebook plugin that lets you share pages and content from a webpage back to your Facebook profile with one click. A 'likejacking' attack makes you 'like' content without your consent.

We have also seen this script used in other ways, like automatically clicking ads.

Analysis by Steven Zhou

Symptoms

The following could indicate that you have this threat on your PC:

You might 'like' certain pages on Facebook that you don't remember 'liking'.

Last update 08 January 2014

TOP

Malware :

Last 20

Family:

TrojanClicker:JS/Faceliker.D