This scam is spreading virally in Facebook. The syntax errors and improper use of the English language in the title is done on purpose by the scammers to fool scam detection robots. This is a variant of the “This Girl Must Must Be Watched” scam theme widely used in Facebook. In the scam, you receive a video with the title above from one of your friends. The video will show a semi sexual explicit image. Coming from one of your friends, one wonders what is in the video and will click the “Play” video arrow. The friend video has been tagged by a malicious scam script and the video will show that it is coming from him or her. In reality, your friend did not send you the video on purpose, but rather a malicious scam script tagged his or her name to the video and originated the post. The same scam will be sent to all his or her friends and you will activate the malicious tagging script if you click on the video. Users who click on the “Play” video arrow will be taken to a permission screen before “seeing” the video. In that permission screen, users will be granting the following to the scammers:
(1) “Access my basic information” (2) “Post to my Wall” (3) “Access my data any time” (4) "Access my photos and videos”. When all is done, there is no video anywhere.
In other words, a user has given a scammer total control of his or her account, including control of video tagging. The malicious script manages to tag the victims name to the friend’s porno video post. Facebook will notify you when a friend tags you, but not as a default. Much better and safer will be if you are notified by default and be asked to approve the tag before it is accepted by Facebook. That is not the case at this time. Incidentally, even when done in good faith with no scam involved, the law does not require the taggee to be asked when it is tagged. This subject has been covered fully by Sophos IT Security experts. Please, see the example below:
(Beginning of Judge Opinion extract”
“Jessica J. Lalonde v. Adam N. Lalonde case at the Commonwealth of Kentucky Court of Appeals. The opinion of the court was delivered by: Lambert, Senior Judge Rendered: February 25, 2011; 10:00 A.M. by Lambert, Senior Judge. Jessica J. LaLonde appeals from that portion of a decree of dissolution of marriage that confirmed the report of the domestic relations commissioner and awarded her joint custody of a minor child but granted physical custody of that child to her former husband Adam N. LaLonde.
Jessica first argues the commissioner's decision was partially based on improperly admitted evidence. Adam introduced pictures of Jessica taken from the social network site Facebook. These pictures in general display Jessica enjoying parties and apparently consuming alcoholic beverages against the advice of her mental health treatment providers. Adam argued she had obviously not been truthful with her treatment providers when she indicated she had suspended or significantly diminished her consumption of alcohol. Jessica additionally argues that because Facebook allows anyone to post pictures and then "tag" or identify the people in the pictures she never gave permission for the photographs to be published in this manner.
Demonstrative evidence such as these pictures must be supported by sufficient evidence to support a finding that the pictures are an accurate representation of what is claimed. Kentucky Rules of Evidence (KRE) 901(a). While typically, such supporting evidence is the testimony of the person who took the picture that it accurately depicts the reality of the photographed situation that is not the only manner to authenticate a photograph. Authentication only requires “testimony that a matter is what it is claimed to be." KRE 901(b)(1). Here, it was Jessica herself who acknowledged that indeed, she had been drinking alcohol and the pictures accurately reflected that activity. That testimony was sufficient to authentic the photographs and they were properly admitted into evidence”.
(End of Judge Opinion Extract)
Users who where affected by this scam must take the following steps:
To remove this hack, users will have to do four things (1) Remove the subject messages by clicking on the small “x” to the right of the message, this stops spreading the scam to your friends and (2) remove any related application in the “Profile Information”, “Privacy settings”, “Application websites” such as “This Girls Must Be Watch Out”. (3) Make sure you notify your friends that you where infected so that they can clean up their own account (4) Change your Facebook password immediately (5) Run your Anti-Virus in full scan mode.