For content on legitimate websites such as Instagram or Youtube, users will be interested and curious, so often click on the link attached to view the content. However, URLs now have a lot of fake cases and can cause you a lot of trouble.
When browsing through the New Feed on Facebook , there will be a lot of news and new links displayed with eye-catching information such as title, description, image and URL, which makes users curious and want to click to view content.
Facebook is filled with content such as ads, spam content, news, notifications ... users will not care much about these links, but when you see the url of Youtube or Instagram users will be more interested because Those are reputable sites, but some guys have taken advantage of YouTube's reputation to forge links.
Although the links before sharing on Facebook cannot be edited, but to prevent false or misleading information. Facebook removed the ability to edit the title, thumb image and description of the links shared on the page in July.
However, spammers can fake the URL of shared links to trick users into clicking on links and redirecting to websites that are not as displayed, or redirecting users to partly Soft and malicious content. Worse, the link can lock your Facebook or send your friends information about that link, make you uncomfortable when using Facebook or create a new Facebook account and you'll have to make friends. and reset the information from the beginning.
Barak Tawily , a security researcher, discovered a simple trick that any user could forge links on URLs by exploiting a preview of Facebook links.
Facebook will scan parts of the sharing link, including the Open Graph meta tag to identify attributes like "og: url" , "og: title" to get the URL, thumb image and title of the site.
Tawily said the interesting point is that Facebook will not confirm if the link in the "og: url" meta tag is the same as the page URL, enabling spammers to spread malicious websites on Facebook with fake URLs. by adding valid URLs to the "og: url" in the Open Graph meta tag on their web pages.
Answering on The Hacker News , Tawily said: "People on Facebook often think that the preview data displayed on Facebook is reliable data, and they will click on the links that interest them. this invisibly provides an opportunity for the attacker. Hackers can abuse this feature to perform various attacks, including fraudulent / advertising / click-based campaigns. " .
Although Tawily reported the issue to Facebook, the social networking site refused to consider it a security flaw, saying it would use " Linkshim ". A system that checks the URL when a user clicks on any link on Facebook to see if it is a malicious link or not to handle and combat such attacks. However, if fake links are created from a new domain , Linkshim will find it difficult to determine if the link is malicious.
And although Linkshim used Machine Learning to identify the content of malicious websites. Tawily discovered that Linkshim's protection mechanism could be bypassed by directly providing non-toxic content to Facebook bots based on User-Agent or IP address.
Since there is no way to check the actual URL after the link has been shared on Facebook, the only way is to open the link, users must consider the warning and caution before clicking to open the link to protect the account themselves. mine. One more thing is that even your phone will be sticky, so you have to be careful when clicking on strange links because if the phone is infected with malicious code, it will be very dangerous.
Dealing with a broken screen on your Android phone is a hassle. Although phone screens are pretty tough, one nasty drop can shatter them completely. Given that most people have a lot of irreplaceable content on their phones, it is
In today's world, where information is more accessible than ever before, finding long-lost friends or relatives has become much easier. Online services for finding people provide convenient and effective tools that allow you to restore lost connections.
In the busy software utilities industry, the available uninstallation tools are often overshadowed by more glamorous alternatives. Nonetheless, an excellent way of removing programs on a PC is vital for optimal system performance and the elimination of unwanted applications.
Instructions for creating a Moon phase trend. The Moon trend is extremely popular on TikTok, creating an unprecedented fever. Through Moon phase will help you know the date
How to edit videos posted on YouTube without losing views, You forgot to blur sensitive content in videos posted on YouTube. Don't worry, here's how to adjust it
How to turn on dark mode on TikTok, How to turn on dark mode on TikTok is not difficult. The article will guide you in detail how to change the TikTok interface to black on Samsung
Shirt size chart - How to choose the most accurate shirt size, What is the shirt size chart? Shirt size means only the size and size of the shirt or pants. Shirt size varies according to direction
Instructions for drawing prizes to receive Lucky Money on ZaloPay. Recently, Zalo has launched the program "Amazing lucky money, Happy Spring Luck" taking place from January 29, 2021 to
How to view and recover Microsoft Outlook password, How to view Outlook password on computer is not difficult. This article will guide you how to view and recover Outlook password
Instructions for creating and searching for draft articles on Facebook. Currently, we can save articles that we have created but have not yet posted on Facebook. Here, WebTech360 invites
How to set up LibreOffice Writer to work like Microsoft Word, If you're planning to switch from Microsoft Word to LibreOffice Writer but want a similar experience
Instructions for turning off saving videos on TikTok are extremely simple, to help people block others from downloading and saving their videos simply and easily. So today, WebTech360
Instructions for creating genealogical charts and organizing them on Google Sheets. Google Sheets is an online office application that helps us easily edit online spreadsheets,
How to import and manage multiple email accounts in Gmail, Want to manage all emails in Gmail? Let's learn how to manage and add multiple accounts with WebTech360
Instructions for using Photoshop filters for beginners, Each filter in Photoshop has its own algorithm and uses. Below are instructions for using the internal filter
How to create automatic clicks on Macrorify, Macrorify helps you create automatic click tasks and detect images. In this article, let's find out how with WebTech360
Instructions for remotely logging out of your Instagram account. If you don't know how to remotely log out of your Instagram account, today WebTech360 would like to introduce
Instructions for remotely logging out of Tik Tok account. To help people quickly log out of Tik Tok accounts from other devices, today WebTech360
Instructions for blurring photos on B612. Recently, the B612 application has updated the image blur effect. Next, WebTech360 will introduce the article Instructions for blurring photos
How to fix the error of printing blank pages in Microsoft Excel. Why do some Excel documents not display data or contain blank pages when printed? Below are the reasons
