Facebook users in India are being targeted by hackers to gain more likes and followers on the social network. According to Symantec security experts, the new scam is a variation of a method called self-XSS (self cross site scripting), which helps trick users into copying and pasting code into their browser's console that could perform various actions on their behalf.

Researchers reveal a post went viral on Facebook from a particular page showing a purported video tutorial on “Facebook Hacking” with a disclaimer saying – it is meant for educational purposes only. The post redirects to a document hosted on Google Drive, which feature some code, which supposedly allows users to reveal their friends' Facebook passwords. The instructions ask users to disclose their friends' Facebook passwords. The instructions attempt to convince the user to paste the code into their browser console window and asks them to wait two hours before the hack will supposedly work.