9 Comments »According to Computerworld, there is a new type of security vulnerability on Facebook that is exploited via spoof image file called a “GIFAR”. A GIFAR is a Java file which is packaged as an image. Once uploaded, the process of tricking the user is somewhat complicated. As the Computerworld article describes how a sample attack would be done:
A bad guy would create a profile on a popular Web site — Facebook, for example — and upload his GIFAR as an image on the site. Then he’d trick a victim into visiting a malicious Web site, which would tell the victim’s browser to go open the GIFAR. At that point, the applet would run in the browser, providing the hacker access to the victim’s Facebook account.
It sounds like a convoluted process for compromising a person’s computer but there are plenty of people that would fall for this type of exploit. The group of computer security experts that found the exploit will display it at an upcoming conference aside from a few critical components that are needed to make it work. My guess is that this exploit will be turned over to Facebook and other vulnerable sites and the problem will soon be fixed. Encoding misleading image files is not a new trick but apparently this is a new way of tricking people.
My guess is that this vulnerability will be fixed pretty soon.
Thanks for the notice! Well with blogs such as this exposing this sleazy scheme, it certainly will get fixed soon
Thanks for the notice! Well with blogs such as this exposing this sleazy scheme, it certainly will get fixed soon
This is not a facebook only flaw. This flaw affects nearly any site that allows the upload of user supplied content. For the record, we have NOT tested this against Facebook to this date.<br><br>-Nate
This is not a facebook only flaw. This flaw affects nearly any site that allows the upload of user supplied content. For the record, we have NOT tested this against Facebook to this date.
-Nate
This would be a difficult process, but when you tag somebody in an image, they almost always come and have a look…<br><br>I don't really see how a GIF that is a JAR could exploit anything on facebook. Facebook resizes all my images… that would break the jar… <br><br>I'd be curious to find out.
This would be a difficult process, but when you tag somebody in an image, they almost always come and have a look…
I don’t really see how a GIF that is a JAR could exploit anything on facebook. Facebook resizes all my images… that would break the jar…
I’d be curious to find out.
I received a message on Facebook from a friend (actually just a Facebook friend, attractive girl) claiming that their friend had taken a picture of me with a hidden camera and a link to a website thats supposedly had the image. I figured that it was something malicious and didn't fall for it. My guess is it was an attempt to take over my account using this flaw.
I received a message on Facebook from a friend (actually just a Facebook friend, attractive girl) claiming that their friend had taken a picture of me with a hidden camera and a link to a website thats supposedly had the image. I figured that it was something malicious and didn’t fall for it. My guess is it was an attempt to take over my account using this flaw.
Thanks for sharing
Regards
Max
http://xtupload.com