"OMFG!! The 10 Most WEIRD Facts About HALLOWEEN! [SCARY!]!"
Currently the likejacked URLs are:
The likejacking sites are both served from 220.127.116.11 (Webair).
What's interesting is a comment in the source of the HTML at the top of the likejack pages for both of the sites that advertises:
"If you want to sell your pages contact <removed>
(I removed the email address)
Presumably this likejacking campaign is advertising to advertise (likejack) your page for you. Google searches reveal the same email address used in Facebook
application development forums ... I think it is time for a thorough code review of this individuals Facebook application. Especially in light of the recent Facebook application privacy breaches.