What is Clickjacking?
“Porn sites are stuffing SVGs with clickjacking code to farm Facebook likes” refers to a specific type of cyberattack involving both SVG files and clickjacking techniques.
Above image is from Malwarebytes post… if you notice (I did not make it a large image but it claims the images are porn images so you will click on them to see them…. but in reality they have Javascript commands in them (besides the AI generated naked pictures)
Malwarebytes and Ars technica have stories….
1. SVGs (Scalable Vector Graphics):
SVG is an image format that can contain not just graphics, but also embedded scripts (like JavaScript).
This means SVG files can potentially be used to execute code when loaded in a browser.
2. Clickjacking:
Clickjacking is a malicious technique where attackers trick users into clicking on something different from what they perceive. For example, a user thinks they’re clicking a “Play” button, but they’re actually clicking a hidden “Like” button for a Facebook page.
This is often done by overlaying invisible or disguised elements over legitimate content.
3. Farming Facebook Likes:
“Farming likes” means artificially increasing the number of likes on a Facebook post or page, often to make it appear more popular or to spread spam/malware.
yes I was reading my 30 top Internet sites and noticed this gem.
As much as everyone wants porn pics and click here on same image – I decided to do the next best thing – cat pictures and stick figures. But it is a good example of a typical Clickjacking scheme – try to get an image that is interesting (in different ways) then get people to click on it so that an automatic like gets registered inside of Facebook. This is a good discussion of any future images that may not be what you think it is.
That is why I have decided to include some rabbit feet to counteract all other negative waves on this web page.
In Summary:
Some adult sites are hiding malicious code inside SVG image files. This code uses Clickjacking tricks to make users unknowingly “like” Facebook posts or pages, boosting the attacker’s content or spreading spam.