All the latest UK technology news, reviews and analysis
|
|
|
17 Oct 2008
Security experts are warning users and administrators of a new crop of Facebook malware.
F-Secure said in a recent blog posting that the company has tracked down a number of pages on the social networking site which attempt to infect users by promising free videos.
The new attacks propagate by way of a malicious worm which hijacks Facebook information. The user is sent a message from an infected friend which promises a link to a YouTube video.
On clicking the link, the victim is directed to a third-party site which scans the user's operating system. Users running Windows are forwarded to the attack page while users running other operating systems are sent to the actual YouTube front page.
Once landing on the attack page, users are prompted to download what purports to be an updated version of Flash which is needed to view the file.
The would-be installer, however, simply delivers the malware payload in what is known as a 'fake codec' attack.
The malware package installs and launches a new copy of the worm which then scans the user's system for Facebook cookies and uses the information to send new attack messages to the victim's friend list.
"This propagation method is effective because the message is supposedly posted by a friend," said F-Secure.
"A person receiving such a message is far more likely to click the included link, greatly increasing the chances of infection."
Security on Facebook has become a growing concern of late. In addition to its use as a means for spreading malware, researchers have suggested that the site could also be used as a platform for denial-of-service attacks on third-party sites.
Latest stories from Open Source
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Sneak peek at the forthcoming glass-based machine
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Our global consultancy client currently seeks a number...
Support Analyst x 1/2 Skills: Apple Mac OSX, Windows...
Network Consultant - London - 55-65k My client are...
A leading global provider of critical information to...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
malware
Hi Rob i'm no expert on these things but if your not able to perform software updates and your search results in google get redirected to other sites and maybe sudden popup windows and your "CPU" SHOOTS up to 100% is best to use a friends Pc to find free software that will scan your Pc and remove infected files or folders.Look at your Pc to see what program pops up and look up the tech pages and the forums (responses to what your Pc is doing) to see what the administrator or moderator says.Fairly simple thing to do is get a malware software program , scan Pc then "SAVE THE LOG FILE" cos you will have to send this to tech website and they will tell you how to remove it.I did it yesterday for my mate cos he got infected by "anitspyware 2009" as what i just mentioned above happened to his now problem solved but not before i spent some time myself trieng to help a mate out without ending up takeing the Pc to the shop and spending around £45 at least.Always do updates as often as possible then perform your scans of the Pc, if you download anything scan it first before you install it with more then 1 software just incase 1 doesn't detect it but the other does.
Posted by: Robbo 26 Oct 2008
malware
it seems this has gotten into my facebook via a friend, is there a way to rid this , thanks
Posted by: rob 18 Oct 2008