Disastrous Implications Inflicted Due Facebook, Claims Panda Security
Security vendor, Panda Security warns of the expansion of recent trend undertaken by cyber crooks to disseminate malware through popular social media. Of recent, two more novel malicious codes shackled netizens using Facebook and created mayhem in the entire networld.
Asprox.N, a computer Trojan is advantageously disseminated through emails. The enclosed message enthralls users of the supposed utilization of their Facebook account in disbursing spam and as a safety measure of this perturbed suit, their login credentials have undergone justifiable modification. This trail included a forged Word document, which presumably may contain the modified password.
The enclosed attachment includes an extraordinary Word icon with an extension Facebook_details.exe. This file is indicative of containing the computer Trojan, which implement the downloading of a .doc file on execution; fair enough to provide the feeling of authenticity of being an original file to a user.
On running this Trojan, some other file formulated to open all accessible ports is downloaded automatically. In this attempt, several mail service providers are also connected at par, which in itself is a preplanned endeavor of hackers to disburse unlimited spam.
The second malware in this endeavor, Lolbot.Q, is disseminated via instant messaging applications including AIM or Yahoo. In this attempt, users confront with the message of malicious links, reports Panda Security.
A single click of the link is sufficient enough to download a computer worm formulated to capture all Facebook accounts and prevent access to the users. In the meantime, users are notified of suspension of their account.
Prerequisites of account activation require users to fill an entire questionnaire on the fulfillment of which, ensured awards including laptops and iPads are guaranteed. The questionnaire also contains a request for subscription and entry of their phone number, in lieu of which a fee of $11.60 per week is charged, reports Panda in infosecurity on February 1, 2011.
The worst part of this act in dismay, binds the users on subscription of the service in order to revive their Facebook account and obtain a new password.
As a safety measure, Panda security recommends users to be conscious while clicking on any mysterious message or links and running executable files or providing personal data to any unidentified applications or web forms.
» SPAMfighter News - 05-02-2011