Facebook Adds Malicious Link Protection

← Back to Stories (view on slashdot.org)

Facebook Adds Malicious Link Protection

Posted by samzenpus on Monday October 3, 2011 @01:33AM from the click-away-grandma dept.

wiredmikey writes "As any IT security department knows, social networks pose a significant threat to users across the board as they blindly click links which often lead to spam or other malicious sites that could result in malware infection. In a move to further protect users of the world's largest social networking site, Facebook is adding a new feature to help protect users from links to these malicious sites. Starting today, when a Facebook user clicks on a link it will be checked against a database from Websense in an attempt to determine if the link is malicious. If the link is determined to be risky, the user will be given the choice to continue at their own risk, return to the previous screen, or get more information on why it was flagged as suspicious."

49 of 113 comments (clear)

Min score:

Reason:

Sort:

Facebook vs. others by tech4 · 2011-10-03 01:34 · Score: 5, Insightful

Sure, it might be used for blocking malicious links now.. but what about when competing social networks, like Diaspora, emerge? Looking at Facebook's history I'm sure they will use it to block users moving to Diaspora and reading about Diaspora. It will be used as an opinion suppression tool.
1. Re:Facebook vs. others by Anonymous Coward · 2011-10-03 01:41 · Score: 2, Interesting
  
  Or, to use a simple comparison to something that both exists NOW and ISN'T a Duke Nukem Forever-like vaporware joke (both in persistent nonexistence AND inevitable lack of impact if/when it finally is released), links to Google+ streams.
2. Re:Facebook vs. others by Oswald+McWeany · 2011-10-03 02:07 · Score: 2
  
  Apparantly Suckerborg himself donated to Diaspora to help fund its development. Would be interesting to see his motivation there. Was he simply donating to a "good cause"?
  
  --
  "That's the way to do it" - Punch
3. Re:Facebook vs. others by Anonymous Coward · 2011-10-03 02:16 · Score: 3, Insightful
  
  He was basically laughing at the idea that Diaspora would turn out to be anything but a never-left-the-ground wankfest for the RMS-style dot communists.
  G+ probably has him worried. Diaspora is a joke.
4. Re:Facebook vs. others by Anonymous Coward · 2011-10-03 02:22 · Score: 1
  
  but what about when competing social networks, like Diaspora
  Diaspora is a competitor to Facebook like Miss Ruth's Finishing School for Girls is a competitor to the State University of New York. Sure, they occupy the same generic space. Sure, they are both institutions of 'higher learning'. However, they don't attract the same kind or number of people and never will.
  I know you people have this dream where every large company goes bankrupt and the underdog wins. When that happens, the underdog becomes the company you want to destroy. You're being anti-success, and that's just stupid.
5. Re:Facebook vs. others by Sockatume · 2011-10-03 02:31 · Score: 2
  
  I don't know how to break this to you, but there are other social networks. Some of them even existed before Facebook!
  
  --
  No kidding!!! What do you say at this point?
6. Re:Facebook vs. others by Anonymous Coward · 2011-10-03 03:07 · Score: 1
  
  the majority of the population wouldn't be able to type Diaspora when drunk, even if they could remember it, which they won't because it has no meaning to them in the first place like a large number of stupidly named OSS applications.
  It's doomed from the start simply due to those factors which is as tragic as it is maddening. It's obvious some people know nothing about 'selling' their product, even when it's a free one.
7. Re:Facebook vs. others by Goaway · 2011-10-03 03:59 · Score: 1
  
  Wait, you still think Diaspora is ever going to amount to anything at all?
8. Re:Facebook vs. others by LordNacho · 2011-10-03 04:37 · Score: 1
  
  Speaking of this, I was on Facebook the other day, and a friend was telling me about Facebook censoring links about Facebook. This particular link was an article about someone trying to put a gay kiss photo on Facebook and them getting all uptight about it (removing it). The weird thing was whenever the guy tried to post the link, it would disappear.
  So there seems to be something about it. Makes me a bit uneasy that FB would do something like that. The link to Diaspora worked, however. Not sure what exactly is different about it, and why it couldn't happen there.
9. Re:Facebook vs. others by burkmat · 2011-10-03 05:04 · Score: 1
  
  1. Go to TPB. 2. Grab any random link (such as http://thepiratebay.org/torrent/6718164/BLACK.DAWN.2005.StV.DVDrip.Swesub.XviD.AC3-Mr_KeFF ) 3. Try to post it to Facebook. Noticed this a while ago when trying to link to the movie Steal This Film, a documentary about The Pirate Bay, published through BitTorrent by the producers. I wonder what else is on that blacklist...
10. Re:Facebook vs. others by Rich0 · 2011-10-03 05:13 · Score: 1
  
  Yup. I just took a look at diaspora and the instructions seem barely usable for setting up a server.
  I got to about the second line of the install script and it died since it wasn't running as root. If they need some ruby libraries installed they should supply a list so that they can be installed using your package manager, not tell you to use some 3rd-party package manager that will stick who-knows-what in your root filesystem. Or, they should just have it install stuff into their own directory tree.
  Granted, this is as much as an inidictment of Ruby/PERL/etc as of Diaspora - they just chose to use those mechanisms which are fairly distro unfriendly. I'm not about to try something new and end up with 4500 orphaned files on my system that I have to later try to clean up lest they cause me problems.
11. Re:Facebook vs. others by Unequivocal · 2011-10-03 07:09 · Score: 1
  
  That's quite unlikely. Facebook's biggest threats are as a monopoly or for "unfair business practices." Doing something like you describe would just open them up to tremendous liability. Google is being scrutinized right now for the same behaviors: are they unfairly favoring their own links against competitors. Just b/c they can do something technically doesn't mean they can do it legally. I think it is highly unlikely that FB's spam link protection tech would ever be used for anything other than spam protection. I see this action by FB as actually good for consumers and an important recognition that link spam is getting out of control just like email spam.
12. Re:Facebook vs. others by kesuki · 2011-10-03 08:57 · Score: 1
  
  fighting malware and virii are a lot like fighting real diseases as soon as something is cured some new disease tends to come along. lets put it this way, i once heard of a server being hidden in a wall, just to protect it from accidental resets because it was vital to booting the whole college network. the thing is that admin moved along and the next guy didn't have a clue when the server used up its lifespan, the next guy spent weeks trying to fix it. eventually tracking down the box from its ethernet cable. so lets say facebook stops known phishing or virus sites -- then something else comes along... death is part of healing its the part where something broken that can't otherwise heal is ended. the part that i understand is this, trying to end all virii will never work. why? because everything has the ability to be broken. as long as there is a computer there will be someone trying to explain why it is broken and has to be thrown out.
  
  --
  https://www.gnu.org/philosophy/free-sw.html
13. Re:Facebook vs. others by WorBlux · 2011-10-03 09:06 · Score: 1
  
  To be fair there are often malicious programs included in torrent files, especially cracked games and secondly facebook is out to make money and don't want to have to hire a bunch of lawyers to fight the Homeland Security or the RIAA. A P2P where you own your social graph and bear the cost of hosting is the only way to make a social network serve it's users rather than the powers that be.
14. Re:Facebook vs. others by Trilkin · 2011-10-03 09:32 · Score: 1
  
  Pfft. Whatever. Soon you'll tell us WoW wasn't the first MMO either.
  
  --
  Nobody cares what the CAPTCHA for your post was.
15. Re:Facebook vs. others by coolmadsi · 2011-10-03 21:45 · Score: 1
  
  Sure, it might be used for blocking malicious links now.. but what about when competing social networks, like Diaspora, emerge? Looking at Facebook's history I'm sure they will use it to block users moving to Diaspora and reading about Diaspora. It will be used as an opinion suppression tool.
  I remember a while ago when the lamebook website (posted screencaps from Facebook that were amusing) was in legal arguments with Facebook over trademarks, links to lamebook on Facebook did not auto link properly.
  I think they also don't auto link (or hinder posting) any link that has the word "torrent" in it.
  Both of these might be out of date now, so I don't know if they still do it.
Hm. by scxw65d · 2011-10-03 01:37 · Score: 2

Ignoring potential future abuses, wouldn't it make more sense to disallow the posting of likely-malicious links? The vast majority of users won't read the warning text and will just click through.
1. Re:Hm. by Sqr(twg) · 2011-10-03 01:52 · Score: 1
  
  If they did that, they would have no excuse for intercepting and tracking the links you click.
Link is broken by miaDWZ · 2011-10-03 01:40 · Score: 3, Informative

Correct URL: http://www.securityweek.com/facebook-adds-malicious-link-protection-powered-websense
1. Re:Link is broken by XxtraLarGe · 2011-10-03 02:00 · Score: 4, Funny
  
  That's what the submitter included, but Slashdot's "useful direct link TFA" blocking technology kicked in.
  
  --
  Taking guns away from the 99% gives the 1% 100% of the power.
2. Re:Link is broken by bigsexyjoe · 2011-10-03 02:11 · Score: 1
  
  Maybe Slashdot thought that link was malicious.
  
  --
  Democracy Now! - your daily, uncensored, corporate-free
3. Re:Link is broken by InsertCleverUsername · 2011-10-03 03:16 · Score: 1
  
  I was just thinking, it would be nice if Slashdot had some anti-malicious link tech blocking their advertisers. Swear to god, last drive-by spyware attempt I intercepted was from clicking on some dumb ad (some curiosity, but more to give /. a little click-through love).
  
  --
  Ask me about my sig!
What about bad apps? by Sockatume · 2011-10-03 01:42 · Score: 2

I've yet to have a relative's computer contract a virus because of a Facebook link, but it seems that every other day they've got some Facebook app spamming everyone on their friends list because of the promise of free online poker or whatever. When does Facebook intend to do something about that? Ever?

--
No kidding!!! What do you say at this point?
1. Re:What about bad apps? by webheaded · 2011-10-03 02:34 · Score: 1
  
  Funny thing that. Now with the new news feeds...if I use anything other than the default, all the stupid apps I told it to block updates from for EVERYONE have come back. Great. Because now when I look at the "Work Friends" list I want to see a wall of this crap. It took me like 10 minutes to hide all the new things that showed up there. I wish they'd do what Google+ does and put it in a separate area so I can NEVER EVER GO THERE.
  
  --
  "Those who would sacrifice essential liberties for a little temporary safety deserve neither liberty nor safety." - BenF
2. Re:What about bad apps? by Lehk228 · 2011-10-03 04:05 · Score: 1
  
  They will collect their cut of the profits
  
  --
  Snowden and Manning are heroes.
Editors by gcnaddict · 2011-10-03 01:43 · Score: 1

it will be checked against a database from Websense database to in an attempt to [emphasis added]

Guys, come on!

In all seriousness, this'll be helpful for home users much more than it will in the office. I'm just surprised they've taken this long to do it; they've MITM'd every link for at least a year and a half.

--
Viable Slashdot alternatives: https://pipedot.org/ and http://soylentnews.org/
Google+ by Oswald+McWeany · 2011-10-03 01:44 · Score: 3, Informative

Let me guess... Google+ is listed as a malicious website.

--
"That's the way to do it" - Punch
Facebook IS the malicious link! by afidel · 2011-10-03 01:50 · Score: 1

Facebook and their omnipresent Like buttons is the largest source of intrusive monitoring on the web. I highly recommend the antisocial subscription for adblock, it's not only reduced the amount of information leaking to google and facebook but it's also improved average page load times by about 40-50% (guestimation).

--
There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
And people will go anyway by Moheeheeko · 2011-10-03 02:07 · Score: 1

You could put up 10 warning screens like that and people will still go "BUT I WANNA SEE THE CUTE THING MY FRIEND SAW"
Danger-Well by Cartman's+Mom · 2011-10-03 02:08 · Score: 1

That should do it.
checking or tracking? by snaggen · 2011-10-03 02:12 · Score: 1

Am I the only one that think it is a little fishy that they are not checking the links when they are published, but only when user are clicking on them. So instead of doing one check per link they think it is better to do million checks... or this is just another excuse to track which user are clicking which links... but I guess that is just me being paranoid.
1. Re:checking or tracking? by DavidD_CA · 2011-10-03 04:33 · Score: 1
  
  First, it's better to check each time -- because a link that was just dandy when published could become malicious over a few days' time. If it only checked once, that'd be an easy way to circumvent the system.
  Secondly, of course Facebook is tracking who clicks on what. And if you don't think any other major site is doing the same, including every search engine result on Google (not just G+), then you are in for a shock.
  
  --
  -David
wrong.. wrong.. wrong.. by Anonymous Coward · 2011-10-03 02:14 · Score: 1

This has been occurring on the mobile version app for at least a week now, and it doesn't check.. every damn link you hit does the "this is an external site.. do you want to continue" crap. Its annoying. *IF* it only did it with suspect links like Google does with its search results or chrome does when it detects something, that'd be ok... but its done it for every damn link so far.
Not to mention I can't stand websenses listings (old employer used them and stuff was incorrectly classified all the time)
Wait... by Charliemopps · 2011-10-03 02:14 · Score: 1

So Facebooks goal is to secretly collect data on you, then sell that data to whomever will pay the most, often criminals and totalitarian governments, and they are now offering protection against links that may lead to sites that do the very same thing? Thanks Facebook!
Chrome already does this by CuriousGeorge113 · 2011-10-03 02:20 · Score: 2

This sounds a lot like the 'Safe Browsing' feature already built into Chrome. It provides a warning screen on a suspicious page, and then allows the user to continue, or to go back.
As long as there is an opt-out setting, I really don't see what the big deal is. Am I missing something?

--
No man is an island, But if you take a bunch of dead guys and tie them together, they make a pretty good raft.
Re:yay more censorship of links by braindead compu by tepples · 2011-10-03 02:21 · Score: 1

Why don't you just get DDNS through the same company through which you bought your domain?
Well that's clever by HeckRuler · 2011-10-03 02:23 · Score: 1

Since social networking sites pose a significant security risk, facebook will of course block other social networking sites.
For your safety.
In this case, I applaud Facebook by bigsexyjoe · 2011-10-03 02:25 · Score: 1

This is actually an issue they should have addressed a long time ago. Lots of people have their accounts hijacked and then they start sending out malicious links. And the bots are getting better at faking normal people.
I like saying "Boo Facebook" as much as anyone, but they need to do this. I don't believe this particular initiative is meant for political censorship. They already have those capabilities. I think the only thing they really gain from this partnering is the ability to block malicious links sent from hijacked accounts.

--
Democracy Now! - your daily, uncensored, corporate-free
I think that is the aim of this initiative. by bigsexyjoe · 2011-10-03 02:27 · Score: 1

It is to add Malicous Link protection, which is the issue you are discussing.

--
Democracy Now! - your daily, uncensored, corporate-free
1. Re:I think that is the aim of this initiative. by Sockatume · 2011-10-03 02:32 · Score: 1
  
  I'm talking about malicious links inside Facebook; Websense identifies malicious links outside facebook.
  
  --
  No kidding!!! What do you say at this point?
Opera does too, via "Haute Secure" by Anonymous Coward · 2011-10-03 02:43 · Score: 1

is the service they use for similar features for security online!
I supplement BOTH of those browsers "built-in features for security" (Opera also has a urlfilter.ini/filter.ini file for this locally also) with HOSTS files (vs. host-domain name based threats, which can & DO get "recycled" by malware makers), + firewall rules tables (for IP address based known online threats (these don't last that long usually & cannot be recycled/reused by malware makers as easily)).
* I do this, for BOTH better online "layered-security"/"defense-in-depth", but, also for more online speed (details in link below from another post I did here today)...
APK
P.S.=> It just works -> http://yro.slashdot.org/comments.pl?sid=2457274&cid=37589432 &, on the SIMPLEST PRINCIPLE OF ALL (i.e. of -> "You can't get burned if you don't go into the malware makers' kitchen", more-or-less)...
... apk
Click Tracking by anyaristow · 2011-10-03 02:48 · Score: 1

Of course this tells them which links you click on. And if Chrome does this, too, then google is not only aware of your searches but also the links you click on outside their domain.
Neat.
1. Re:Click Tracking by Warwick+Allison · 2011-10-03 08:49 · Score: 1
  
  Exactly. The content containing the link is already on their servers. The could check it there and annotate. What they want is to know if you've clicked it.
It will work fine... by Thelasko · 2011-10-03 03:06 · Score: 1

for five minutes. After that, the malware writers will identify the Facebook servers and show them a different page.

--
One of our competitors trademarked the term "hypothesis". From now on, we will call them "boneheaded ideas".
If visiting a site can result in malware infection by Hentes · 2011-10-03 03:13 · Score: 2

then you have much bigger problems than Facebook.
even better protection from Facebook links: by Gravis+Zero · 2011-10-03 04:11 · Score: 1

DON'T USE FACEBOOK

--
Anons need not reply. Questions end with a question mark.
So which comes first? by poofmeisterp · 2011-10-03 04:42 · Score: 1

Quote from article: "Starting today, when a Facebook user clicks on a link it will be checked against the Websense database in an attempt to determine if the link is malicious."
So... Do the malicious links people post always end up in the WebSense malDB before anyone views them?
Or... Does the hosting provider of said malicious link take the "site" down first?
All I read is another FUD-calming act. Read: "Look what we've done to make our site better for you to belong to today!"
Facebook blocking malicious links... by Nos9 · 2011-10-03 10:23 · Score: 1

So Facebook is going to block links to sites that are full of spam, or attempt to take all of your personal information in order to make money from it...
So, as best I can tell, Facebook has deemed Facebook.com to be a malicious link...
Link protection easily broken by mepholic · 2011-10-04 21:33 · Score: 1

Hey guys, just want to let you know that the Link Protection is easily broken. So much for protection, eh?