Hackers selling $25 toolkit to create malicious Facebook apps

Hackers selling $25 toolkit to create malicious Facebook apps

Summary: Malicious hackers are selling a $25 toolkit to anyone interested in creating and distributing dangerous Facebook applications

SHARE:

Malicious hackers are selling a $25 toolkit to anyone interested in creating and distributing dangerous Facebook applications, according to researchers at Websense Security Labs.

The do-it-yourself toolkit offers a template for spreading malware, directing users to click-fraud accounts and for pushing Facebook users to bogus surveys to hijack personal information.

follow Ryan Naraine on twitterThis commoditization of Facebook malware is further confirmation that social networks are a happy hunting ground for cyber-criminals looking to hijack personal data for use in identity theft attacks.

"The buyer doesn't have to have development experience with Facebook, he/she just needs to follow the accompanying instructions and a working viral Facebook application is at their disposal," the company explained.

Websense researchers have linked the toolkit, called TinieApp, to the recent "Profile Creeps" and "Creeper Tracker" rogue app attack that appeared on Facebook over the last week.

"This phenomenon of template Facebook applications like Tinie app shows how the spamming culture is consolidating more and more around Facebook, adapting to the platform and increasing what we call Web spam," Websense added.

Topics: Social Enterprise, Security

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

12 comments
Log in or register to join the discussion
  • RE: Hackers selling $25 toolkit to create malicious Facebook apps

    crackers you mean
    bnlf
    • RE: Hackers selling $25 toolkit to create malicious Facebook apps

      @bnlf

      He should have said "Scum".
      Hallowed are the Ori
    • RE: Hackers selling $25 toolkit to create malicious Facebook apps

      No, not crackers. Crackers are in the business of cracking/removing software serial numbers -- hence, the name.
      WarhavenSC
      • Thank you Big [Clueless] News Media of the 80's

        @WarhavenSC

        The whole hacker vs cracker definitions has become so muddled no one can get anything properly labelled anymore.

        The term Computer Cracker came from people "cracking" or breaking into computer systems. Over time it got shortened to just Cracker. I would imagine the term was coined from Safe Cracker. Both breaking into computer systems and breaking into safes and vaults is considered "cracking".

        Hackers are people who are interested in how computers systems work. Some of them for nefarious purposes, some for altruistic purposes, and others just for the sheer curiosity.

        That was more or less how they were defined before the big news medias of the 80's came in a painted everything hacking without any distinction. The tech community has been fighting this since.
        dragosani
  • RE: Hackers selling $25 toolkit to create malicious Facebook apps

    I'm not surprised. Our current society does nothing to teach anyone what it means to be a decent human being. No one has any self respect or even cares to know what that means. The current generations make the 80s look selfless.
    I12BPhil
  • question can we find them explain them

    with a baseball bat
    Quebec-french
  • RE: Hackers selling $25 toolkit to create malicious Facebook apps

    Maybe Zucker should drop $25.
    jonlberg
  • LOL

    Of course.
    james347
  • Avoid Facebook

    We want to voice our opinion and frustration because Facebook has become a target for personal information seekers. SSL might help a little. It's just that when you ask for too much information it bound to attract information seekers. For all of us who are concerned about Facebook issues we have created the website called Avoid Facebook @ <a href="http://www.AvoidFacebook.com" target="_blank" rel="dofollow">http://www.AvoidFacebook.com</a>
    Avoid Facebook
  • RE: Hackers selling $25 toolkit to create malicious Facebook apps

    Am I the only one that finds everything Facebook and Twitter malicious in and of themselves? Just think what might be achieved if the time spent on just these two was spent, say, reading a good book.
    zdnet@...
  • RE: Hackers selling $25 toolkit to create malicious Facebook apps

    Sounds like a good investment to me dude. Wow.

    www.net-privacy.at.tc
    WemiZemi
  • RE: Hackers selling $25 toolkit to create malicious Facebook apps

    There is an interesting tidbit about this app at crshare.com<br><br>Begin---------------------------------<br>Now, this is the good part:<br><br>When the user uses your application, you are given control over that user:<br><br>You can:-<br>-Post status updates on their BEHALF (as if you were theme) anytime.<br>-Post messages/links to 25 of their friends walls at anytime.<br>-Post on any Fan pages the user is an admin of at anytime.<br>-Send to/collect the users e-mail (useful for mail advertising)<br>End----------------------------<br><a href="http://crshare.com/tinie-app-v36/" target="_blank" rel="nofollow"><a href="http://crshare.com/tinie-app-v36/" target="_blank" rel="nofollow">http://crshare.com/tinie-app-v36/</a></a><br><br>This app hijacks the user account.<br><br>Privacy & Malware Protection: http://www.getcocoon.com
    GetCocoon