Sophos Warns about Fake Email Intimating Facebook Hitting user's Inboxes
A shady looking email, apparently emerging from facebook, has been hitting internauts inboxes from last few days, bewared by security expert at security firms, sophos.
Bearing this subject: 'Account cancelation request', a type of fake notification explains as "Hi (email address): "we are sending you this email to aware you that we have received an account cancellation request from you. Please follow this link to cancel this request." The email ends on behalf of facebook team, security firm sophos warns.
The link doesn't take you to official page of facebook page, but a third party application running on the facebook platform. Of course, that means that the link goes to a facebook.com address.
Sophos says that the first thing found that if you did click on the link is a message asking you if you want to permit an unknown java applet to run on your computer.
And in case you click "no thanks" button they will just carry on pestering you to allow the java applet to run, company added.
Also, if the java applet is permitted to run, other message appears, notifying that the adobe flash must be upgraded. During this advancement, a number of malicious files are copied into your computer.
Recognized by sophos, as Mal/SpyEye-B and Troj/Agent-WHZ, they are created in such way that they allow the attackers to remotely gain control over infected device and spy in victims' activities.
Sophos commented that the social engineering used by the cheater behind this malware attack is very cleaver. They are aware of the fact that they value their facebook account a lot so they don't like to lose neither their account not the social contact with their families and friends. The cybercriminals suppose that they will fulfill the requirement to fix their cancellation of their account.
Hence, to ease the chances of being victimized, sophos advised social network customers to install a good antivirus application, which will catch the malicious plot easily.
Related article: Spike in Attacks Causes Early Release of Windows Patch
» SPAMfighter News - 31-05-2012