Fake Facebook 'like' networks exploited code flaw to create millions of bogus 'likes'

September 9, 2017 by Elizabeth Weise, Usa Today
Credit: CC0 Public Domain

A thriving ecosystem of websites that allow users to automatically generate millions of fake "likes" and comments on Facebook has been documented by researchers at the University of Iowa.

Working with a computer scientist at Facebook and one in Lahore, Pakistan, the team found more than 50 sites offering free, fake "" for users' posts in exchange for access to their accounts, which were used to falsely "like" other sites in turn.

The scientists found that these "collusion networks" run by spammers have managed to harness the power of one million Facebook accounts, producing as many as 100 million fake "likes" on the systems between 2015 and 2016.

A large number of "likes" can push a posting up in Facebook's algorithm, making it more likely the post will be seen by more people and also making it seem more legitimate.

Quid-pro-quo sites that give users points for liking a post in exchange for getting their own posts liked have long existed, violating Facebook's terms of service.

The researchers found that this activity has now been turbocharged because scam artists found a loophole to exploit code Facebook uses to allow third-party applications such as iMovie and Spotify to access a user's Facebook account, automating a process that formerly was manual and involved many fewer likes.

"When you become part of this network, you can say 'Give me likes on this post and as soon as you request it, you get thousands of likes on a specific post," said Zubair Shafiq, a professor of computer science at the University of Iowa in Iowa City who documented the automated networks.

Facebook told USA Today that the security flaw that made it possible for these sites to exploit users' accounts had been closed. However on Thursday, USA TODAY was able to join one of the networks and get 50 likes on a post to a newly-created Facebook page within one minute.

Facebook did not immediately respond to a request for comment.

The services operate outside of the United States but hide their locations. They also disguise the fact that people who use them are engaged in activity prohibited by Facebook.

Their business model is basic: They make their money by posting ads on their sites and also selling "premium" services that allow users to get even more "likes" than they allow their regular users. Some also allow users to create fake comments that can be added to the post of their choice.

The sites operate openly, and researchers found them by entering a Google search for phrases such as "Page Liker." Among the 50 so-called collusion networks listed researchers listed was djliker.com, which described itself as "a social marketing system that will increase likes, comments and increase visits to pages."

Another claims it was set up by Indonesian students, though the contact email address given doesn't work. They offer easy-to-follow instructions and even how-to videos to walk users through signing up.

A paper outlining the research was first posted Wednesday and will be presented at the Association for Computing Machinery Internet Measurement Conference in London in November. One of the authors is Nektarios Leontiadis, a threat research scientist at Facebook.

The networks identified by these researchers do not appear to be linked to another, extensive Facebook scam involving fraudulent "likes" that Facebook said it had disrupted in April. That operation targeted popular publishers' pages with false "likes" in an attempt to gain more Facebook friends. Facebook purged millions of fake accounts connected to that scam from USA Today, one of the primary targets, and others.

In the Facebook hacking scam detected by the Iowa researcher, are knowingly entering into a agreement to falsely obtain "likes." But they may not realize what they're giving up.

"Users think it's relatively benign, but actually they're handing over full control of their Facebook account," said Shafiq.

"They can also access all the information that's available on your profile, see your posts, get your friends list, even read your private messages. We can't tell if this information is being collected and sold to others," he said.

Explore further: Facebook disrupts suspected spam operation

Related Stories

Facebook disrupts suspected spam operation

April 14, 2017

Facebook on Friday said it disrupted an international fake account operation that was firing off inauthentic "likes" and bogus comments to win friends it would then pound with spam.

Facebook cracks down on insincere "Likes"

September 1, 2012

Facebook ramped up efforts Friday to get rid of "Likes" that aren't from people genuinely interested in giving a virtual thumbs up to pages at the world's leading social network.

Facebook steps up battle on 'fake likes'

October 3, 2014

Facebook said Friday it has stepped up its battle against spammers who promise to deliver "likes" to its members, and warned users on using such scams.

On the hunt for Facebook's army of fakes

May 12, 2016

Ever wonder why so many people like certain Facebook pages, no matter how boring or badly updated they are? They could well be the subject of "like farming", the process of artificially inflating the number of Facebook page ...

Recommended for you

Security gaps identified in internet protocol IPsec

August 15, 2018

In collaboration with colleagues from Opole University in Poland, researchers at Horst Görtz Institute for IT Security (HGI) at Ruhr-Universität Bochum (RUB) have demonstrated that the internet protocol IPsec is vulnerable ...

Researchers find flaw in WhatsApp

August 8, 2018

Researchers at Israeli cybersecurity firm said Wednesday they had found a flaw in WhatsApp that could allow hackers to modify and send fake messages in the popular social messaging app.

1 comment

Adjust slider to filter visible comments by rank

Display comments: newest first

rrrander
not rated yet Sep 10, 2017
Stupid people post things online that should remain private. When this deplorable need to expose oneself online began, security wasn't much of a concern, but now the dummies are wailing because what they put out there IS now fully out there.

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.