This blog is NOFOLLOW Free!

Posts Tagged ‘social media’


Wondering what this means? Well, it’s a verification code from an online social game that seems so interesting that I will share it with you:

It reminds me from, but Dreamshares was (“was”, because now is dead) about sports, while Empire Avenue it’s about social networking. You must buy and sell stocks in persons and become an influential person.


Invitation to phishing: Facebook Connect

I worked these days on a “Facebook Connect” implementation. While working on it, I suddenly had a revelation: this Facebook Connect it’s an invitation to phishing!

Let’s take a look at, a website that uses Facebook connect. When you click on the button: “Connect with Facebook”, a pop-up window like in the screen below will appear:

Problem is, that even a script kiddie can very easily emulate this pop-up window. It took me only 1/2 hours to get this button to work (click on it, works only on CSS3 browsers):

I’m wondering, how many time would need somebody really interested in phishing accounts to setup a perfect clone and start asking for “Facebook connections”? 2 hours? 3 hours?

People think that this is not so bad, as long as the phisher’s website has nothing to offer, but a smart phisher will be persuasive enough in order to make the people think that they should provide their login credentials. For example the phisher could pretend that he gives on his website the next lottery’s winning numbers.

Very, very bad for Facebook. Facebook really, really sucks with this.