7 Facebook Security Threats Show No Signs of Slowing in 2011, According to PandaLabs
- New malware strains exploit Facebook users via email and instant messaging
PandaLabs, Panda Security’s anti-malware laboratory, announced the discovery of security exploits via popular social media sites Facebook and Twitter. In the last several days, two new malware strains have been wreaking havoc on Facebook users. The first, Asprox.N, is a Trojan delivered via email informing users their Facebook account is being used to distribute spam and that, for security reasons, the login credentials have been changed. The email includes a fake Word document attachment, supposedly containing the new password, with an unusual icon and the filename Facebook_details.exe Deceiving victims by opening a .doc file upon opening the attachment, this file is really a Trojan that downloads another file designed to open all available ports, connecting to mail service providers in an attempt to spam as many users as possible.
An image of the Asprox.N exploit is available here: http://www.flickr.com/photos/panda_security/5394881095/
The second new malware strain, Lolbot.Q, is distributed across instant messaging applications such as AIM or Yahoo!, with a message displaying a malicious link. Clicking the link downloads a worm designed to hijack Facebook accounts, blocking users’ access while informing that the account has been suspended. To “reactivate” their account, users are asked to complete a questionnaire, promising prizes such as laptops and iPads. After several questions, users are asked to subscribe and enter their cell phone number, which is in turn charged a fee of $11.60 per week. Victims can restore access to their Facebook account only once they subscribe to the service and receive a new password.
Images of Lolbot.Q exploit are available here: http://www.flickr.com/photos/panda_security/5394881133/
http://www.flickr.com/photos/panda_security/5395478542/
http://www.flickr.com/photos/panda_security/5395478578/
“Once again cybercriminals are using social engineering to trick victims and infect them with malware,” said Luis Corrons, technical director of PandaLabs. “Given the increasing popularity of social media, it is no surprise that it is being exploited to lure victims.”
To avoid security threats such as these, PandaLabs recommends users be wary of any unexpected messages with unusually eye-catching subjects and avoid clicking on external links, running executable files or entering personal data into unknown applications or web forms.
For more information on the latest security threats please visit the PandaLabs Blog.
Comments
[...] Panda Labs Report: Facebook Security Threats Show No Sign Of Slowing In 2011 [...]
[...] Panda Labs Report: Facebook Security Threats Show No Sign Of Slowing In 2011 [...]
As I site possessor I believe the content material here is rattling great , appreciate it for your hard work. You should keep it up forever! Best of luck.
good site, very resourceful. I like it very much. I come acoss your site by baidu search engine. I might visit your site daily and introduce it to my schoolmates. Please keep it fresh. Keep on the good work. – A techie
My brother suggested I may like this web site. He used to be entirely right. This submit actually made my day. You can not consider simply how much time I had spent for this information! Thanks!
Hi there, I discovered your site by way of Google at the same time as searching for a comparable matter, your web site got here up, it looks great. I’ve bookmarked it in my google bookmarks.
A very intriguing study, I may well not agree completely, however you do make some very legitimate factors.