All the latest UK technology news, reviews and analysis
|
|
|
13 Mar 2009
A fake video malware attack is circulating under the guise of a Facebook message. Security firm Websense said that the attack spreads via emails posing as personal messages on Facebook, and uses the familiar 'fake codec' infection method.
The attack begins when the user is sent an email signed as a Facebook message with headlines such as 'dancing girl drunk in the pub' and 'super beautiful girl dancing'. The email then offers a link which appears to be from Facebook.
On clicking the link, users are directed to a third-party site designed to look like Facebook. The page loads what appears to be a video of a woman dancing, and then attempts to download an executable file under the name 'Adobe_Player11'.
The executable then infects the user with a malicious file that is believed to give an attacker remote access to the infected machine.
The use of Facebook as an attack vector has become increasingly popular with malware writers and distributors in recent months. Most recently, a rogue application known as error check system spread over the site.
So-called 'fake codec' attacks are also a popular form of infecting users. Attack sites will often use sensational or pornographic movie files as a lure for malware infections disguised as video codecs.
Latest stories from Security
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
Orange and Intel talk us through the ins and outs of their San Diego smartphone
Connect with V3.co.uk
Social networking is almost ubiquitous. This white paper examines the benefits and risks and it looks at the different ways companies can reconcile them
The importance of understanding your infrastructure
My London client is looking for an experienced Programme...
My leading client is looking for a number of excellent...
My client, a leading international name in Manufacturing...
My client is looking for an Automated Engineer/Developer...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
Social networks at workplace should not be excuse for poor software management policies
Social networks have a place and time like any other social activity, which may include, in limited cases, the workplace. However, malware attacks are not exclusively distributed via social networks. In addition to proper, comprehensive and frequent employee training, effective organizations must do their part by planning, implementing, and monitoring global malware preventive policies. From keeping software updated, to applying patches, to proper firewall and gateway entries. Perhaps the winning combination is enhancing the human side through awareness and training, while providing the proper software tools to battle malware and viruses.
Posted by: Josue Batista 24 Mar 2009
Employees are paid to work!!
Apart from the security aspects relating to social networking sites, lazy gits called employees are actually employed and paid to work not spend their time networking with their mates. This is another reason why these sites should be wiped out from the workplace.
Posted by: Pete 20 Mar 2009
block facebook from office?
The cavalcade of security risks at Facebook is remarkable. The risks are a threat to workplace-related computers. Employers/organizations thus have security as a reason to block social network sites. http://computersafety.wordpress.com/2009/01/19/security-threat-facebook-and-myspace-at-work/ --Ben
Posted by: Benjamin Wright 14 Mar 2009