Facebook's Mandatory Anti-Malware Scan Is Invasive and Lacks Transparency

Louise Matsakis, writing for Wired: The internet is full of Facebook users frustrated with how the company handles malware threats. For nearly four years, people have complained about Facebook's anti-malware scan on forums, Twitter, Reddit, and on personal blogs. The problems appear to have gotten worse recently. While the service used to be optional, Facebook now requires it if it flags your device for malware. And according to screenshots reviewed by WIRED from people recently prompted to run the scan, Facebook also no longer allows every user to select what type of device they're on. The malware scans likely only impact a relatively small population of Facebook's billions of users, some of whose computers may genuinely be infected. But even a fraction of Facebook's users still potentially means millions of impacted people.

The mandatory scan has caused widespread confusion and frustration; WIRED spoke to people who had been locked out of their accounts by the scan, or simply baffled by it, on four different continents. The mandatory malware scan has downsides beyond losing account access. Facebook users also frequently report that the feature is poorly designed, and inconsistently implemented. In some cases, if a different user logs onto Facebook from the same device, they sometimes won't be greeted with the malware message. Similarly, if the "infected" user simply switches browsers, the message also appears to occasionally go away.

UserAgent string

[b0s0z0ku]

Browse FB (if you must) with your UserAgent string set to FreeBSD. Do they even MAKE a "malware scanner" for FreeBSD? If it doesn't exist for the platform, it's not likely to be offered.

Scan, Scam

[kmassare]

Whenever I get a "warning" about malware on my device, I assume that the message is a scam where someone wants to charge me to "fix" my device or wants to install malware on it.