Christina Aguilera got arrested video scam spreads virally on Facebook

Filed Under: Clickjacking, Facebook, Social networks, Spam

Christina AguileraAnother day, another clickjacking scam on Facebook. This certainly seems to be becoming a successful model for scammers who want to earn some cash - and while it's working so well, why should they change their methodology?

The latest scam which innocent Facebook users are being tricked into clicking on involves a message about singer and actress Christina Aguilera, who earlier this week was arrested in Hollywood. Although Aguilera was later released, and told that she would not be charged, her boyfriend Matthew Rutler faces a drink-driving charge.

Here's what the scam looks like when one of your Facebook friends falls for it:

Christina Aguilera got arrested messages

WTF! I just saw a movie how Christina Aguilera got arrested which was minutes ago!! --> [LINK]

SHOCK!SICK! I just saw a movie how Christina Aguilera got arrested which was minutes ago!! --> [LINK]

WICKED! I just saw a movie how Christina Aguilera got arrested which happened minutes ago!! --> [LINK]

The links take your browser to a website which looks like a YouTube-style video portal, calling itself FbVideo.

Christina Aguilera got arrested video

As you're so interested in watching Christina Aguilera the worse-for-wear with drink, you might not hesitate to click on the video thumbnail. However, your click is being silently clickjacked into telling Facebook that you "Like" the webpage (thus spreading the scam virally) and you are presented with a survey which - if you complete it - will earn commission for the scammers.

A browser plugin like NoScript can prevent the clickjacking from taking place, but if you're not running something like that or not protected with software like Sophos then you may be unaware that you have reached a clickjacking page.

NoScript intercepts clickjacking

For many people who have left themselves unprotected, however, the damage is done and you have helped the bad guys spread their scam across Facebook.

Your Facebook profile has been updated to say that you "Like" the video, and your friends may also now be tempted into clicking on the link.

Christina Aguilera post

If you fell for the scam, you should clean-up your Facebook page as quickly as possible. Fortunately it's not that tricky to remove the post from your newsfeed and unlike the page.

Unlike Christina Aguilera page

Make sure that you stay informed about the latest scams spreading fast across Facebook and other internet attacks. Join the Sophos Facebook page, where more than 60,000 people regularly share information on threats and discuss the latest security news.

You could also do a lot worse than check out our best practices for better privacy and security on Facebook guide.

, , , , ,

You might like

3 Responses to Christina Aguilera got arrested video scam spreads virally on Facebook

  1. MrX · 1679 days ago

    How do I remove a post and Unlike it ?

    • View it on your newsfeed. You should see a small "x" in the top right of the post. (You may have to roll your mouse over the top right hand corner of the post for the "X" to appear). Click it and it will give you the option to both remove the message, and unlike the page.

      Hope that helps

  2. Steve from ZolexPC · 1679 days ago

    Thanks for the heads up Graham. No surprise to see them taking advantage of another celebrities misfortune.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

Graham Cluley runs his own award-winning computer security blog at, and is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s. Now an independent security analyst, he regularly makes media appearances and gives computer security presentations. Follow him on Twitter at @gcluley