https://threatpost.com/adware-spreading-via-social-engineering-facebook-messenger/127628/ [threatpost.com]

Adware Spreading Via Social Engineering, Facebook Messenger

The message uses the victim’s name and the word “video” in order to entice them to click through to a shortened bit.ly link in the message. If the victim does click through, they’re brought to a Google Docs page, which hosts an image from the victim’s Facebook Photo album.

Social engineering comes into play again on the Google Docs page. The photo has a transparent play button over it, rigged to look like a video. If the victim clicks on it, Jacoby says, it directs the victim to a series of websites, multiple domains the researcher calls a domain chain, and in turn adware.

To be fair this would probably work on almost any chat service. Best to be wary of links.