It doesn’t look like Facebook gets its clickjacking issues under control. The various so called “Facebook worms” keep on reappearing every couple of days on new pages. Users don’t get the concept of a “hidden like button” causing these issues, and Facebook obviously doesn’t want to shut down the “like” functionality, since it will make them the ultimate heavyweight on the advertising market: which other company can give you such detailed demographics as Facebook can for your web sites?

So far there seem to be two protections available:

  • The NoScript extension for Firefox includes Clickjacking warning
  • Blocking the Facebook “like” functionality via web filters (which I recommend for privacy reasons anyway) including Firefox AdBlock (Note: Chrome/Safari/WebKit AdBlock just hides, doesn’t block!) and Privoxy

Maybe the Antivirus companies should step up here, too - and on one hand, block the Like function to stop this worm from spreading, and on the other hand, prevent Facebook from spying on their users.

It’s already making the news that Facebook doesn’t get these issues under control.