Skip to main content

'Hot girls' worm exploits Facebook Like button

Facebook has been hit by another scam that exploits the social network's 'Like' button, reports security firm Sophos.

The scam, which has been dubbed 'likejacking', updates user profiles with a message saying that the user likes a web page called '101 Hottest Women in the World :D'.

Anyone who clicks on the link to investigate what the web page is will be taken to a web page containing a photo of Hollywood starlet Jessica Alba.

The page is infected by a Trojan which is identified by Sophos antivirus as Troj/Iframe-ET. (opens in new tab)

The scam works by hiding an invisible button underneath the user's mouse pointer – so if they're logged into Facebook, clicking anywhere on the infected page will update their Facebook profile to say that they also 'Like' the page, before redirecting them to pictures of female celebrities from lad's mag Maxim.

The site at the heart of the clickjacking scam is part of the CPALead advertising network, so users' clicks help to generate ad revenue for those behind the scam.

Security expert Graham Cluley of Sophos said on his blog (opens in new tab): "Facebook really needs to grab this problem by the horns, as it is increasingly being struck by clickjacking worms. The social network should tighten up the way it handles the 'liking' of external webpages before it is more widely abused by malicious hackers and spammers."

Users who believe they may have been affected by the scam should check their profile and delete any suspicious entries relating to the page, and warn friends who might have clicked on the link. monitors all leading technology stories and rounds them up to help you save time hunting them down.