Friday, September 19, 2014

Auto Likes & Their Unknown Outcomes


Socializing is become our part of life now a days. Specially if we talk about Facebook, its one of the socializing network which is gaining popularity among the users rapidly.
Well let us not beat about the bush. Now a days, we see many users in our friends list asking us to like there Display Pictures or comment/like on a specific post, which no doubt irritate us. Many groups also started organizing competition that the one who gets the highest likes/comment on the specific post will be awarded.






Now, there are 3 ways by which one can get numerous likes on his/her post. Which are disclosed below :
1 : Asking Friends
2 : Using website which provide likes/comment on the basis of LIKES FOR LIKES/ COMMENTS FOR COMMENTS etc
3 : Using websites which provide free facebook likes by utilizing your facebook TOKENS.

ACCESS TOKENS :
An access token is an opaque string that identifies a user, app, or page and can be used by the app to make graph API calls. Access tokens are obtained via a number of methods, each of which are covered later in this document. The token includes information about when the token will expire and which app generated the token. Because of privacy checks, the majority of API calls on Facebook need to include an access token.
 
Now, the above mentioned 2 out of 3 options are not harmful except of the 3rd one, yes, websites which provide likes by utilizing you Facebook Access Tokens.
How they can harm us? For this, we are going to take a website as an example .
Lets start, im taking this website as an example :

You can see, the website is offering free likes and for this they are demanding your Access Tokens, well let us move forward by providing them our Access token.

So when I clicked on “GET AN ACCESS TOKEN” , a dialogue box open of a well known website’s app named “SPOOTIFY” (It may be different for e.g HTC, Skype, Nokia etc). After allowing it, the app redirected me on their website which looks like below :

Now if you noticed, I got my ACCESS TOKEN, which is something like this :
CAAAAKLSe4lIBAGgpWz3JnH4iqo1rZCBsLanVxqLCKQii68RSB5LbmTaAVBtQqTLQeq …. And so on till the end.
I Copied it and paste the whole code in that website’s submission box
After submitting my token, it redirected to me on another page where they were showing my recent status/post and asking me to press the START button to get likes.

Well I did the same as they demanded,

Woo, within 6 minutes I got 115 likes on my post and the numbers kept on increasing.

Amazing? Yes it is, now why not check out the darker side of the same joyful story ?
Now I visited Facebook developers page in order to investigate that what I have done.
I submitted my Facebook Access Token which I got from that Auto Like website into the Facebook Developers Debugging Tool’s dialogue box in order to debug it, and I got shock when I saw the following details :






Facebook disclosed me that the app which I had recently used demanded my Access Token which give it permission from my side to have certain information who’s scope are mention above.
You can see that the website on which I used my ACCESS TOKEN have access my all notification, pages and different personal stuff. It will not be wrong If I says that the website hacked me without getting my password. On further research, I found  that they can post any status, can send any messages or can make any like to someone’s post on behalf of my automatically without letting me know.
Then I realized that how this AUTO LIKE mechanism works,  as I used the website for auto likes and gave my ACCESS TOKEN to them, the website automatically saved my ACCESS TOKEN into their database and then utilized it on liking others post when someone else uses the same website for the same reason. In such way they are increasing there likes number and accessing their user’s personal information without letting them know.

However, Even facebook can’t take action on this as it is not a loop hole in Facebook but it’s a 3rd Party Application which is exploiting those users who blindly using different apps of social world.

PREVENTION :

However, we should firstly avoid such websites from letting them exploit ourselves, but if one in any way had used such website then he/she can make their ACCESS TOKEN expired by changing their PASWWORDS.  Once the ACCESS TOKEN expired then no one can use them in any way.


On my next upcoming article, i will demonstrate that how to one can hack other facebook users by having an access to their ACCESS TOKENS 

19 comments:

  1. Ever wanted to get free Facebook Likes, YouTube Views, Google+ Circles, Twitter Followers, Instagram Followers, and also SoundCloud Plays?

    Did you know you can get all of these Likes, Followers, Views & Subscribers AUTOMATICALLY AND ABSOLUTELY FREE?

    All you need to do is register on the following Social Exchange sites, earn free points & exchange them for Followers, Subscribers, Likes or Views to your Social Accounts.
    1. Add Me Fast
    2. Like 4 Like
    3. You Like Hits

    Advertising networks that allow you to earn free advertising credits daily:
    1. MellowAds

    Use the credits to advertise your social network profiles for free.

    ReplyDelete
    Replies
    1. **Contact 24/7**
      Telegram > @killhacks
      ICQ > 752822040
      Skype > Peeterhacks
      Wicker me > peeterhacks

      **HIGH CREDIT SCORES SSN FULLZ AVAILABLE**

      >For tax filling/return
      >SSN DOB DL all info included
      >For SBA & PUA
      >Fresh spammed & Fresh database

      **TOOLS & TUTORIALS AVAILABLE FOR HACKING SPAMMING
      CARDING CASHOUT CLONING SCRIPTING**

      Fullz info included
      NAME+SSN+DOB+DL+DL-STATE+ADDRESS
      Employee & Bank details included
      High credit fullz with DL 700+
      (bulk order preferable)
      **Payment in all crypto currencies will be accepted**

      ->You can buy few for testing
      ->Invalid or wrong info will be replaced
      ->Serious buyers contact me for long term business & excellent profit
      ->Genuine & Verified stuff

      TOOLS & TUTORIALS AVAILABLE:

      "SPAMMING" "HACKING" "CARDING" "CASH OUT"
      "KALI LINUX" "BLOCKCHAIN BLUE PRINTS" "SCRIPTING"

      **TOOLS & TUTORIALS LIST**

      =>US CC Fullz
      =>Ethical Hacking Tools & Tutorials
      =>Bitcoin Hacking
      =>Kali Linux
      =>Keylogger & Keystroke Logger
      =>Bulk SMS Sender
      =>Facebook & Google Hacking
      =>Bitcoin Flasher
      =>SQL Injector
      =>Logins Premium (PayPal/Amazon/Coinbase/Netflix/FedEx/Banks)
      =>Bitcoin Cracker
      =>SMTP Linux Root
      =>Shell Scripting
      =>DUMPS with pins track 1 and 2 with & without pin
      =>SMTP's, Safe Socks, Rdp's brute
      =>PHP mailer
      =>SMS Sender & Email Blaster
      =>Cpanel
      =>Server I.P's & Proxies
      =>Viruses & VPN's
      =>HQ Email Combo (Gmail, Yahoo, Hotmail, MSN, AOL, etc)

      ==>Contact 24/7<==
      Telegram> @killhacks
      ICQ> 752822040
      Skype> Peeterhacks
      Wicker me > peeterhacks

      *Serious buyers are always welcome
      *Big Discount in bulk order
      *Offer gives monthly, quarterly, half yearly & yearly
      *Hope we do a great business together

      **You should try at least once**

      Delete
  2. Hello, If you want to hack your spouses or girlfriends Email, social account, phone and other means to get contact of someone without him/her knowing, contact cyberhackpros@gmail.com. They are very good and affordable and also based in the USA. contact him via email/phone CYBERHACKPROS@GMAIL.COM or +1 512 605 1256 Tell him i reffered you.He will help you INSTAGRAM:Cyberhackprofessionals

    ReplyDelete
  3. Not working, anymore but I found working Facebook auto liker FB liker and for YouTube sub4sub

    ReplyDelete
  4. Buy perfect money in India @Rs.70/- per pm Sell @Rs.58/- per pm,CALL 08054019105, Chandigarh, 160017

    --------------------------------------------------------------------------------------------------------------

    Buy/Sell Perfect Money At Reasonable Rates. We Provide Perfect Money At best Rates.
    We also sell buy Perfect Money, neteller and Bitcoin.

    Call us : +91 9517544444

    Gtalk : garrysingh1598

    Web.: www.sellperfectmoney64.com

    ReplyDelete
  5. Do this hack to drop 2lb of fat in 8 hours

    Well over 160 000 women and men are utilizing a easy and secret "liquids hack" to burn 1-2lbs each and every night while they sleep.

    It is proven and works on everybody.

    Here are the easy steps for this hack:

    1) Hold a clear glass and fill it with water half glass

    2) Proceed to use this proven hack

    and be 1-2lbs lighter the very next day!

    ReplyDelete
  6. Your Affiliate Money Printing Machine is ready -

    And making profit with it is as simple as 1-2-3!

    This is how it all works...

    STEP 1. Input into the system which affiliate products you want to promote
    STEP 2. Add PUSH button traffic (this LITERALLY takes 2 minutes)
    STEP 3. Watch the system explode your list and sell your affiliate products all on it's own!

    Are you ready???

    Click here to activate the system

    ReplyDelete
  7. Thanks for this useful information,
    This information is very useful to me,
    Please update this type of information more
    www.khammaminfo.com

    ReplyDelete
  8. Hello everyone I want to introduce you guys to a group a private investigators who can help you with information you need in any situation in life and they are ready to follow you step by step until your case is cleared just contact +17078685071 and you will happily ever after
    Premiumhackservices@gmail.com

    ReplyDelete
  9. Marites Allen is popularly known as the “Philippine Feng Shui Queen” for her great strides in promoting feng shui practice in the country and in other parts of the world. She is the first Filipina to be awarded the prestigious title of “Master in Feng Shui” by the International Feng Shui Association in 2013 Feng Shui Expert in the Philippines


    ReplyDelete
  10. Thank you so much for sharing this great blog.Very inspiring and helpful too.Hope you continue to share more of your ideas.I will definitely love to read. Visit my Website 먹튀검증,먹튀사이트,토토사이트

    ReplyDelete
  11. The post is written in very a good manner and it contains many useful information for me. Visit my Website 먹튀,먹튀검증,먹튀검증업체

    ReplyDelete
  12. I found so many interesting stuff in your blog especially its discussion. From the tons of comments on your articles, I guess I am not the only one having all the enjoyment here! keep up the good work... 꽁나라,꽁머니 사이트,꽁머니 홍보방 Click on this link for visit my website.

    ReplyDelete
  13. Really i appreciate the effort you made to share the knowledge. The topic here i found was really effective to the topic which i was researching for a long time visit excellentdigitizing.com

    ReplyDelete
  14. Hey!. Such interesting material! I’m really enjoy this. Keep writing! You can check also my post create your own patch

    ReplyDelete
  15. Thank you quite much for discussing this type of helpful informative article. Will certainly stored and reevaluate your Website.Visit my website for SEO Services Software Development Company

    ReplyDelete
  16. I really appreciate this wonderful post that you have provided for us. I assure this would be beneficial for most of the people hotel guest service app

    ReplyDelete
  17. Really i appreciate the effort you made to share the knowledge. The topic here i found was really effective to the topic which i was researching for a long time generic Cialis , Buy tadalafil 20mg tablets in australia click on it.

    ReplyDelete
  18. **Contact 24/7**
    Telegram > @killhacks
    ICQ > 752822040
    Skype > Peeterhacks
    Wicker me > peeterhacks

    **HIGH CREDIT SCORES SSN FULLZ AVAILABLE**

    >For tax filling/return
    >SSN DOB DL all info included
    >For SBA & PUA
    >Fresh spammed & Fresh database

    **TOOLS & TUTORIALS AVAILABLE FOR HACKING SPAMMING
    CARDING CASHOUT CLONING SCRIPTING**

    Fullz info included
    NAME+SSN+DOB+DL+DL-STATE+ADDRESS
    Employee & Bank details included
    High credit fullz with DL 700+
    (bulk order preferable)
    **Payment in all crypto currencies will be accepted**

    ->You can buy few for testing
    ->Invalid or wrong info will be replaced
    ->Serious buyers contact me for long term business & excellent profit
    ->Genuine & Verified stuff

    TOOLS & TUTORIALS AVAILABLE:

    "SPAMMING" "HACKING" "CARDING" "CASH OUT"
    "KALI LINUX" "BLOCKCHAIN BLUE PRINTS" "SCRIPTING"

    **TOOLS & TUTORIALS LIST**

    =>US CC Fullz
    =>Ethical Hacking Tools & Tutorials
    =>Bitcoin Hacking
    =>Kali Linux
    =>Keylogger & Keystroke Logger
    =>Bulk SMS Sender
    =>Facebook & Google Hacking
    =>Bitcoin Flasher
    =>SQL Injector
    =>Logins Premium (PayPal/Amazon/Coinbase/Netflix/FedEx/Banks)
    =>Bitcoin Cracker
    =>SMTP Linux Root
    =>Shell Scripting
    =>DUMPS with pins track 1 and 2 with & without pin
    =>SMTP's, Safe Socks, Rdp's brute
    =>PHP mailer
    =>SMS Sender & Email Blaster
    =>Cpanel
    =>Server I.P's & Proxies
    =>Viruses & VPN's
    =>HQ Email Combo (Gmail, Yahoo, Hotmail, MSN, AOL, etc)

    ==>Contact 24/7<==
    Telegram> @killhacks
    ICQ> 752822040
    Skype> Peeterhacks
    Wicker me > peeterhacks

    *Serious buyers are always welcome
    *Big Discount in bulk order
    *Offer gives monthly, quarterly, half yearly & yearly
    *Hope we do a great business together

    **You should try at least once**

    ReplyDelete