This morning on facebook I found this scam: http://www.breakthesecurity.com/2012/09/miley-cryus-sex-tape-real-or-fake.html
It takes the user through three bit.ly urls, one via google translate, and then to an obfuscated file on Google Code which checks the user's country code then sends them to the scam page. The scam asks you to verify your age by telling you to copy and paste a Facebook verification string which allows the scammers access to your Facebook account. The offending Google Code project: https://code.google.com/p/alsdasdll/ The obfuscated file is under downloads and labeled jquery.html. Apparently the only file in the project, another policy violation. The string '\x68\x74\x74\x70\x3A\x2F\x2F\x62\x69\x74\x2E\x6C\x79\x2F\x53\x73\x4C\x71\x68\x65' is read by Javascript as 'http://bit.ly/SsLqhe'. Here are the bit.ly links I followed, in case you're wondering. Adding '+' to the URL lets you see what it is before going. I'll also be reporting these to bit.ly. http://bit.ly/WAn9q2+ http://bit.ly/SDm429+ > alsdasdll.googlecode.com/files/jquery.html?m2ArOe02 http://bit.ly/SsLqhe+ Thanks -- You received this message because you are subscribed to the Google Groups "Project Hosting on Google Code" group. To view this discussion on the web visit https://groups.google.com/d/msg/google-code-hosting/-/yugBn-s1go0J. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-code-hosting?hl=en.
