<html><head></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; color: rgb(0, 0, 0); font-size: 14px; font-family: Calibri, sans-serif; "><div><meta charset="utf-8"><p style="font-style: italic; font-weight: bold; font-family: arial; font-size: 8pt; color: rgb(0, 0, 0); direction: ltr; ">WHID 2011-96: Click-jacking on Facebook</p><p style="font-family: arial; font-size: 8pt; color: rgb(0, 0, 0); direction: ltr; "><b>Entry Title: </b>WHID 2011-96: Click-jacking on Facebook<br><b>WHID ID: </b>2011-96<br><b>Date Occurred: </b>May 2, 2011<br><b>Attack Method: </b>Clickjacking<br><b>Application Weakness: </b>Application Misconfiguration<br><b>Outcome: </b>Link Spam<br><b>Attacked Entity Field: </b>Web 2.0<br><b>Attacked Entity Geography: </b>USA<br><b>Incident Description: </b>WebSense analyzes a recent click-jacking attack against FaceBook users.<br><b>Mass Attack: </b>No<br><b>Reference: </b><a target="blank" href="http://community.websense.com/blogs/securitylabs/archive/2011/05/02/a-weekend-of-click-jacking-on-facebook.aspx">http://community.websense.com/blogs/securitylabs/archive/2011/05/02/a-weekend-of-click-jacking-on-facebook.aspx</a><br><b>Attack Source Geography: </b><br><b>Attacked System Technology: </b>Facebook</p></div></body></html>