14 DAY TRIAL // Kaspersky Lab experts have taken their time to analyze one of the phony advertisements we are presented with almost each day while surfing social media sites, especially Facebook.
If earlier we took a peak at an alleged secret tape leaked from Selena Gomez, this time security researchers came across a single server that hosts no less than 300 different scams, similar to the one presented before.
Here are just a few of the schemes hosted on the same server: If you like Nutella, never look this video!!! Laura Frisian: the most beautiful a** in the world! Drill a tooth abscess! Disgusting :s Compilation of Embarrassing and Busted! Photos, Awesome :D Transgender 10-Year-Old, Boy Happier As A Girl ! A Really Giant Baby ! Amazing it looks so real :D Air Race Plane Crashed in the crowd during a show ! The worst thing that can happen to a girl! A fisherman catches a couple when they make ... :D
Each of these scams is designed to earn the cybercrooks a certain amount of money for every user they fool into clicking and sharing the phony adverts with their friends.
The pieces of code that hide behind such a Facebook scheme are obfuscated to confuse those who may wish to analyze it, but basically, they all work the same way.
If the victim is logged on to his social networking website account, he’s presented with a window that looks similar to a video frame, urging users to click on certain sections and share the outrageous ad.
“The JavaScript code is obfuscated and packed, this makes the entire debugging more difficult, but during the research I have identified several domains connected to this scam. It also seems that they use redirectors to prevent URL/Domain blacklisting, and there are also several different scams on each server,” said Kaspersky Lab Expert David Jacoby.
The purpose of these malicious operations, as in most cases, is to generate traffic and a hefty income for the crooks that launch it.