Facebook Targeted with Valentine Attack Results in Malware
Trend Micro, the computer security company has warned that a new Internet assault, which starts by adding a post to the target members' walls, call upon friends for loading the Valentine's subject matter onto their Facebook profiles.
But, the post is dangerous as clicking it causes the user being diverted onto a different web-page, which prompts him for loading the mentioned subject matter. Significantly, the assault works solely when the user has either Mozilla's Firefox or Google's Chrome web-browser open.
According to Trend Micro, the assault's concentration on Firefox or Chrome likely implies that cyber-crooks' preference is increasingly for popular browsers especially those which are extension-compatible.
Meanwhile, choosing the install option provided to the user on his profile web-page generates FacebookChrome.crx a malevolent file download that Trend Micro identified to be TROJ_FOOKBACE.A. If run, this Trojan in turn runs a script, which exhibits advertisements obtainable on specific websites, the security company states.
Moreover, following the above mentioned malevolent browser-extension installation, users' browser-operations get monitored while they're diverted onto an online survey site that requests them to provide own cell-phone number. Additionally, by viewing the post inside Internet Explorer browser, users this time too are diverted onto the survey site although they aren't directed for downloading anything.
Security researchers state that the Facebook Valentine assault isn't seemingly unique. For, as the young eagerly look forward to the Day, cyber-crooks find great opportunity in Valentine scams wherein they can apply their tricks. Indeed, researchers at Symantec another security company have detected spoofed electronic mails already doing the rounds, offering alluring, romantic presents to women.
The company's researchers explain that the spoofed or phishing e-mails begin by displaying an attractive header" "Valentine's Day Special Discount Offer -Flowers, Plants & Gifts." A sample message reportedly is an invitation to recipients for buying gold, silver or platinum ornaments. They're notified that they'll get more freebies with the stated buying. But on following the web-link, they land on a site that solicits their private details citing as necessary for getting the presents.
Meanwhile, during 2011, other major assaults were observed that exploited Valentines theme like e-card downloading malicious software and phishing.
Related article: Facebook Users Should be Careful of a Computer Virus
» SPAMfighter News - 08-02-2012