Hot on HuffPost Tech:

See More Stories
AOL Tech

Facebook Efforts to Stop 'Likejacking' Fall Flat

like buttonAfter an increasing number of "likejackings," Facebook has finally started to address the problem. But the solution is haphazard at best, say security experts. Likejacking -- the process spammers use to make users click a "like" button hidden beneath some especially tantalizing linkbait -- has become more prevalent. If your Facebook friends seem to be "liking" far too many embarrassing things of late, blame linkbait (unless they just have bad taste). To combat the problem, Facebook has set up a system that looks for strange "like" patterns; when it finds one, it demands extra confirmation from a user. (Basically, "Are you sure you like this?")

But it doesn't exactly work.

The security experts at Sophos have been testing the feature over the last couple of weeks, and the results are disheartening. For one, it still doesn't exactly detect scam "like" setups. "Since the deployment of this technology, I have only seen it trigger in a few likejacking attacks," writes Chester Wisniewski. Meanwhile, the messaging makes no mention of the likelihood that the user is being scammed. Given how readily most people just hit "continue" on any sort of pop-up, that seems like weak oversight at best. Facebook will likely continue working on this, but, in the meantime, we should all use common sense. And, if you possibly can, resist checking out that "OMG This Guy Took A Photo of His Face Everyday for 10 Years." We know it's hard.

Tags: clickjack, clickjacking, facebook, FacebookLifejacking, like, LikeButton, linkbait, linkjack, linkjacking, security, top