Previous     Next
Warning: JavaScript is turned off! Some features on this website will not work without it.

Hackers Gaining Access to Social Networking User Accounts Using Self XSS Scams

Hackers Gaining Access to Social Networking User Accounts Using Self XSS Scams

Hackers have found a new way of tricking social networking users into injecting or placing malicious JavaScript or client-side code into their web browsers, which will allow the same hackers to gain access to their victims’ accounts and use it for fraud, to send spam, to post the same or other scams to their victims’ friends.

Please continue reading below.

This type of trickery or scam is called Self XSS, where XSS means Cross-site Scripting.

A Self XSS Scam Used by Hackers

Hack any Facebook account following these steps:

1. Go to the victim’s profile
2. Click right click then click on inspect element and click the “Console” tab.
3. Paste the code into the box at the bottom and press Enter.

The code is in the web site:****/

Good luck: *

Don’t hurt anybody…

The scam above was posted on popular social networking website Facebook, and was created by hackers or cyber-criminals to trick Facebook users into pasting or injecting malicious code into their web browsers, by claiming that they can hack any Facebook account if they follow some simple steps.

But, the code the hackers are asking you to paste into your web browser, will not allow you to hack anyone’s account, it will only allow the cyber-criminals to hack your account.

The code that they (hackers) are asking you to paste into your web browser will allow them to gain access to your Facebook account, steal your account username and password by taking you to fake websites and then ask you to sign-in.

There are so many illegal things that these hackers can do once they have tricked you into pasting their malicious client-side code into your web browser.

So, remember there are many other scams similar to the one above and you should never paste, insert, or inject code into your web browser.

In order to trick you into pasting or injecting code into your web browser, cyber-criminals will ask you to do one or more of the following, depending on the web browser that you are using:

  • click “Inspect Element”
  • go to “Developer Tools”
  • press the “F12” key
  • click on “Develop”
  • click “Show web Inspector”

Please share with us what you know or ask a question about this article by leaving a comment below. Also, check the comment section below for additional information, if there is any. And, forward malicious email messages to us using the following email address: .

Contribute to Online Threat Alerts

Would you recommend this article to a friend or family member?

Yes (1)          No (0)   

Alert and help your family and friends by sharing this article with them:

Submit Your Comment or Question

Submit your comment or question in the box below to share what you know or to get answers about this article.

CommentComments or Questions ()