Author Topic: i think it's fake malicious website related to facebook  (Read 896 times)

Offline hicham0716

  • Comodo Loves me
  • ****
  • Posts: 161
i think it's fake malicious website related to facebook
« on: June 07, 2019, 11:22:23 AM »
Hi Comodo How are you
i was in facebook i found a strange picture when i clicked at it
it sent me to this website
https://lookaside.fbsbx.com/file/%D9%A2%D9%A0%D9%A1%D9%A9%D9%A0%D9%A6%D9%A0%D9%A3_%D9%A1%D9%A1%D9%A5%D9%A9%D9%A1%D9%A0.jpg?token=AWyHRGyAfWW6A1oQdBwslZhqN_r41QpoI0VHjVCfFCsdEQfYKVMTxl9e_Ak-HGJ4yaVr6sXmFuz2zoJrZAjIP0AD4TwEa0qpBsWZ6U86cmmJUBV8VHX-N5NuhS_TAmOrpu-I86woKIoQraUfLfXOVyJHXKxvDPc3u6NFtrvecgI4tMi4r0IxqFMCWf1KM07mPv_tDKR1ucZSJ6ZVvrOzk-7B

i have searched about fbsbx i found that it's related to facebook!
but i am already using facebook .. why it requested my email and password again???
is that a new exploit in the attachment system in the facebook .. which make the spammer hack everyone?
what type of picture is included in that link?

wait you guys <3
Best Regards
hicham

Offline hicham0716

  • Comodo Loves me
  • ****
  • Posts: 161
Re: i think it's fake malicious website related to facebook
« Reply #1 on: June 07, 2019, 09:59:24 PM »
i think it's kali linux exploit
it's from 2018
they are using
 He created a Payload with msfvenom and obfuscated VBA Scripts with Chrw() function that returns a Unicode character, if in case Unicode is not supported by the system it acts as Chr function which returns ASCII or ANSI character.


The Facebook vulnerability may allow attackers to create a phishing attack through the trusted domain. The Vulnerability resides in validating the contents of the files posted through links and Unvalidated re-directions.

Best Regards
hicham

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek