Twitter DMs Part of Scam Spreading Malicious Facebook App
According to specialists from GFI Software the security company, people browsing Twitter.com may find DMs (direct messages) seemingly sent from buddies' accounts while reading: "lot ur famous now [Link]" which in reality is scam promoting one dubious Facebook application that takes onto a sinister software.
The web-link, named "FailVids," potentially dupes victims into thinking they're on some kind of hilarious movie site.
If this web-link is clicked via the initial DM, the victim lands on certain Facebook application site that prompts him to provide his username and password for Twitter account. The provision of these credentials by the victim actually means giving them away to cyber-criminals who could then gain admission into his account and still more spread the so-called application through additional DMs.
However, the scam continues even further for, it takes Web-surfers onto one site named woot.tweetelf.info that shows one window for a bogus YouTube movie whose background feigns as Facebook as it shows text that states there's need for YouTube player to be updated so the media can be viewed.
But, like always, there's, in fact, no update program whatsoever for Flash Player rather the file is an Umbra malware installer that designs concealed files, triggers off .exe files within folders as also hijacks the computer for a network-of-bots.
Cautioning Web-surfers following the latest scam, Senior Threat Researcher Christopher Boyd from GFI Software posted online that his company identified the false Flash Player update as a Trojan namely Trojan.Win32.Generic!BT and that they must visit only authorized sources for taking down any Flash Player software. Gfi.com published this dated September 20, 2012.
Meanwhile, Facebook became aware about the fake Facebook application when GFI Software, without delay, informed the social-networking provider. Subsequently, Facebook deleted the app from its website as also disconnected the spoofed page from the Internet.
Moreover, according to one Facebook Spokesperson, his company regarded its members' security with utmost seriousness, while continuously devised measures and programs for identifying and stopping spurious operations. If adequately informed, the company would fast investigate security vulnerability reports as also repair potential problems, he emphasized and Tamebay.com published it on September 20, 2012.
Related article: Twitter Flaw Compels Victims to Follow Hacker’s Account
» SPAMfighter News - 29-09-2012