Agriculture Communication


| Share

Prevent Facebook Clickjacking

Facebook ClickjackWe have seen a growing number of instances of Facebook "clickjacking" among our NDSU Agriculture & University Extension colleagues lately. This post includes some tips for preventing clickjacking as well as the steps to take if your Facebook account has been clickjacked.

Most clickjacking attacks start with a post you may see in your Facebook news feed. The post will likely be something designed to generate the greatest number of clicks, like "Justin Bieber's Phone Number" or naked pictures of a celebrity. One of the latest examples is "VIDEO: New Teacher From Behind." These posts appear to have come from one of your Facebook friends, so you might feel comfortable clicking on the post to see what it is about.

However, by clicking on the post you are not just viewing it, you are either "liking" the page or, worse, re-sharing the post on your Facebook profile.

The best defense against clickjacking attacks is to use the Firefox browser with the NoScript add-on. Another suggestion is to run Facebook in a separate browser window from your other web activity. Instead of clicking on a post in the browser window where you are running Facebook, paste the URL included in the post into your other browser window. Because your non-Facebook browser window is not logged in to Facebook, your account will be protected if the post is a clickjacking attack.

If your do get clickjacked, here is what you should do:

  1. Check your news feed and make sure you aren't spamming the message to your friends. If you are, you need to remove the item from your wall by clicking the small "x" in the top right hand corner of the post.
  2. If you downloaded any software or files from sites like this, update your anti-virus software on your computer and run a complete system scan. There is a good possibility that your system is now infected with a virus, trojan or some other malware.
  3. If you submitted your cell phone number for any of the surveys, then you should contact your carrier immediately to keep any bogus charges from appearing.
- Bob Bertsch & Julie Kuehl


Creative Commons License
Feel free to use and share this content, but please do so under the conditions of our Creative Commons license and our Rules for Use. Thanks.