Be Cautious of opening Links, Facebook worm leads to heavy infection

Needless to say, users are advised to be careful about opening any link contained in Facebook messages. If you’re not sure whether the message apparently sent by your friend was actually sent by them, it’s better to ask him about it. In this case, if they have not, you can also tell them that their computer is probably infected and the account compromised.

The researchers of Danish security firm CSIS warn about a new Facebook worm doing rounds and dropping malware.

It spreads by compromising accounts and spamming out the users’ friends with a message that contains only a link. If followed, the link takes the potential victim to a page where he or she are offered what appears to be a screensaver for download:

Unfortunately, it is not a JPG file, but an executable (b.exe). Once executed, it downloads another executable to the system.

“The worm carries a cocktail of malware onto your machine, including a Zbot/ZeuS variant which is a serious threat and stealing sensitive information from the infected machine,” warn the researchers.

The worm is hosted on a variety of domains, so the link in the malicious message may vary. Other servers are used to collect the data sent by the aforementioned malware and to serve additional malicious software.

Advertisements

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s


%d bloggers like this: