Press Panda Security
5

Facebook, favorite bait of cyber-crooks in 2011, reports PandaLabs

  • In just three days, two new malicious codes using Facebook have been discovered: Asprox.N and Lolbot.Q

The recent trend for developing computer threats designed to spread by exploiting the most popular social media continues to gather pace. In the last three days alone, two new malicious codes that use Facebook to ensnare victims have been wreaking havoc.

One of these, Asprox.N, is a Trojan that reaches potential victims via email. It deceives users by telling them that their Facebook account is being used to distribute spam and that, for their security, the login credentials have been changed. It includes a fake Word document supposedly containing the new password.

The email attachment has an unusual Word icon, and is called Facebook_details.exe. This file is really the Trojan which, when run, downloads a .doc file that runs Word to make users think the original file has opened.

The Trojan, when run, downloads another file designed to open all available ports, connecting to various mail service providers in an attempt to spam as many users as possible.

The other, Lolbot.Q, is distributed across IM applications such as MSN and Yahoo!, displaying a message with a malicious link. This link downloads a worm designed to hijack Facebook accounts and prevent users from accessing them. If users then try to login to Facebook, a message appears informing that the account has been suspended and that to reactivate them they must complete a questionnaire, with the offer of prizes –including laptops, iPads, etc.– to encourage users to take part.


After several questions, users are asked to enter their cell phone number, where they will receive data download credits for a cost of €8.52 a week. On subscribing to the service, victims will receive a password with which they can recover access to their Facebook account.

According to Luis Corrons, Technical Director of PandaLabs, “Once again cyber-criminals are using social engineering to trick victims and infect them with malware. Given the increasing popularity of this social media, it is no surprise that it is being exploited to lure potential victims”.

PandaLabs advises all users to be wary of any messages with unusually eye-catching subjects, whether via email or IM or any other channel; and to be careful when clicking on external links in Web pages. Obviously, we also warn users not to enter any personal data in applications attempting to sell any type of test.

More information: www.pandalabs.com.

You might also like

Fake Facebook uncovered, reports PandaLabs
PandaLabs, the malware analysis and detection laboratory at Panda Security, has encountered a spoof Facebook...
PandaLabs’ Quarterly Report: 61% of new threats created in Q1 were Trojans
- Resurgence of traditional viruses after recent decline - Attacks through social networks and...
Facebook Scammers Exploit Steve Jobs’ Death, According to PandaLabs
Fraudsters were using the social network to redirect users to a malicious website The scam claimed...
Analysis of a Facebook hack – How your identity could be stolen
With its millions of users, the world's most popular social network has become a perfect target for hackers...

Comments

    001

    [...] Facebook, favorite bait of cyber-crooks in 2011, reports PandaLabs | Press Panda Security. [...]

    002

    [...] Corrons, technical director for PandaLabs, in a security advisory, said the email attachment’s unusual Word icon is actually a Trojan, identified as [...]

    003

    [...] made it a favorite target of Internet scammers. Security vendor Panda Security recently reported on two new malware attacks that attempt to trick Facebook users into opening a bogus e-mail attachment and click a link in an [...]

    004

    [...] made it a favorite target of Internet scammers. Security vendor Panda Security recently reported on two new malware attacks that attempt to trick Facebook users into opening a bogus e-mail attachment and click a link in an [...]

    005

    [...] it a favorite target of Internet scammers. Security vendor Panda Security recently reported on two new malware attacks that attempt to trick Facebook users into opening a bogus e-mail attachment and click a link in an [...]

Leave a Reply

(required)
(will not be published) (required)