Facebook is now a honey pot when your friends click on malicious things without their knowledge.
A few days ago the author got a message on Facebook from a person he very rarely speak to, and he knew that something fishy was going on. The message uses traditional social engineering to trick the user into clicking the link. The message reads “David Video” and then a bit.ly link.
The link points to a Google doc. The document has already taken a picture from the victim’s Facebook page and created a dynamic landing page which looks like a playable movie.
When the victim clicks on the fake playable movie, the malware redirects them to a set of websites which enumerate their browser, operating system and other vital information. Depending on their operating system they are directed to other websites.