Archive for the ‘earthquake’ Category
A hoax SMS text message claiming that radiation may hit the Philippines, following explosions that have rocked Japan's Fukushima nuclear power plant, have caused such a problem that authorities in Manila have issued an official denial.
The text of one of the hoaxes that is being spread via SMS messages reads as follows:
"BBC Flashnews: Japan gov't confirms radiation leak at Fukushima nuclear plants. Asian countries should take necessary precautions. Remain indoors first 24hours. Close doors and windows. Swab neck skin with betadine where thyroid area is, radiation hits thyroid first. Take extra precaution, radiation may hit Philippines."
However, the BBC has issued no such news flash, and the Philippines' Department of Science and Technology has published a statement asking people not to believe the hoax:
"The advice circulating that people should stay indoors and to wear raincoats if they go outdoors has no basis and did not come from DOST or the National Disaster Risk Reduction Management Center."
According to some media reports, workers at some companies and school children were sent home after the rumours began to spread.
Readers of the Naked Security site will be all too aware of the nuisance that can be caused by passing on hoax warnings about virus threats, and how technology has made it all too easy to pass on scares without checking facts.
It seems the problem is even more severe when the scare is not about a malware attack, but about a radiation health scare instead.
Sick-minded scammers are up to their dirty tricks again, trying to make a quick buck out of the Japanese earthquake and subsequent tsunami which has shocked people around the world.
Many people are shocked by the TV news reports, showing the devastation wrought on the people of Japan, and some of the video footage taken by media agencies and individuals in the country is truly extraordinary.
And it is against this backdrop that scammers have launched their latest campaign.
Japanese Tsunami Launches Whale Into Building
You won't believe this! Crazy Footage!
Other versions read:
GRAPHIC VIDEO.. Japans Tsunami Sends WHALE Smashing Into A Building!
Of course, this is just the latest FouTube clickjacking attack to hit Facebook, and sure enough if you click on the link you are taken to a webpage which tries to trick you into clicking (which will silently say to all of your Facebook friends that you "Like" the page).
Will you get to see a video of a whale launched into a building by the Japanese tsunami? No, of course not.
Instead, you're asked to complete a survey which earns commission for the scammers.
When I tried it, the survey attempted to tempt me with the offer of a purple iPad. Funny, I thought Steve Jobs only made them in black and white.
How to clean-up after a likejacking attack
If you made the mistake of clicking on a link spread via a scam message like the ones listed above, you should check your Facebook news feed and remove any offending links that you might have spammed out to your friends. Hover your mouse over the top right hand corner of the post and you should see a small "x" which will allow you to remove it.
And if you entered your mobile phone number, you should keep a close eye on your cellphone bill and notify your carrier to prevent bogus charges from stinging you in the wallet.
Remember to be wary of any links that look like this. If you really want to watch a video chances are that it's available for free - without you having to complete any surveys - on legitimate video sites like YouTube.
Going forward, it's essential that you stay informed about the latest scams spreading fast across Facebook and other internet attacks. Join the Sophos Facebook page, where more than 60,000 people regularly share information on threats and discuss the latest security news.
We've also published some good best practices for better privacy and security on Facebook.
Hat-tip: Thanks to Naked Security readers Don, Rogi and Tripad who contacted us about this scam.
Unashamed "Likejacking" site ibuzzu.fr has stooped to the level of exploiting the recent and devastating Japanese tsunami as a drawcard.
The video page is entitled "Vidéo exclusive de l'arrivée du Tsunami sur les cotes Japonaises - Voilà une vidéo du Tsunami du Japon du 11 Mars 2011 !!! A voir absolument." (Exclusive video of the tsunami reaching Japanese shores - A must-see video of the Japanese tsunami of 11 March 2011!)
But the believable-looking video viewer is a Facebook likejack - clicking on the the grey screen and Play icon actually triggers an invisible Facebook Like button behind the scenes.
Of course, if you happen to be logged into Facebook at the time, the Like happens automatically.
Despite the warning - which most people probably won't notice - it's impossible to condone this sort of activity, especially since the video it offers you in this underhand way is already publicly and openly available on YouTube.
Exploiting a newsworthy tragedy like this for the shameless promotion of a web link from which you can extract ad-click revenue in return for showing someone else's content is just not acceptable business practice.
If Facebook made it slightly more obvious that you had clicked a Like button - for example, by popping up a confirmation dialog - then the clickjackers' activities would be made that much harder. The tiny reduction in convenience and immediacy associated with Liking would be a small price to pay.
Remember to review the posts on your wall regularly. If you notice something you don't remember Liking, you may have been clickjacked. Be sure to click the [X] icon next to the post, and to choose the "Remove Post and Unlike..." option.
Also, don't leave yourself logged in to Facebook all the time that your browser is open. It's tempting, and it's what Facebook would love you to do, but it leaves you open to triggering Facebook events, especially Likes, without realising what you've done.
Incidentally, the offending site (ibuzzu.fr) is blocked by the Sophos Web Appliance, which prevents protected users from getting to this Likejack in the first place.
Make sure that you keep informed about the latest scams spreading fast across Facebook and other internet attacks. Join the Sophos page on Facebook, where over 60,000 people regularly share information on threats and discuss the latest security news.
(Thanks to Alex Ziemanski for first reporting this clickjack to us.)