Facebook has added a new feature allowing users to embed photos, videos and website previews into comments. Now, if you include a URL in a Facebook comment, you'll be able to preview content from the web page that URL links to.
For example, if your friend posts about the new Harry Potter movie and asks if it's any good, you might paste a link to the film's Rotten Tomatoes review page. The new comment will let your friend--and anyone else who can view that post--see a sample of the content on the Rotten Tomatoes, such as the movie's rating and a promo graphic.
If you paste a link to the movie's trailer on YouTube, your friend will be able to view the video from within the comment you've posted--without ever leaving Facebook.
Facebook notes in a post announcing the new feature that embedding videos, photos and page previews into a comment is optional. "If you prefer your comment without the preview, you can remove the preview with one click," according to Facebook's brief explanation of the feature.
FACEBOOK'S RICH COMMENTS: [via Facebook]
Though the feature is intended to be a convenient way for users to engage with third-party content, Inside Facebook surmises that rich content in Facebook comments could result in a "new breed of spam."
"Disruptive parties could mark up phishing or other scam sites with Open Graph tags that make previews of them look innocent in order to trick users into clicking," Inside Facebook writes. "Alternatively, spammers could use the markup to push eye-grabbing previews that get their message across without requiring users to click. Facebook may need to implement comment preview anti-spam systems to prevent these behaviors."
Satnam Narang, security blogger and principal at Narang Security Consulting, also notes the potential for scammers and created a mock-up of a what a Comment scam might look like (below).
POSSIBLE COMMENT SCAM: [via Narang Security]