All the latest UK technology news, reviews and analysis


Facebook users warned over fake security page phishing scam

02 Apr 2013
facebook-homepage

Cyber criminals are targeting Facebook users with a malicious, fake security check page, according to Trend Micro.

Trend reported detecting the phishing scam in a blog post on Sunday.

The scam reportedly hooks Facebook users by pretending to be a legitimate security check, which when clicked redirects the user to a malicious site owned by the criminals.

"The goal is to redirect users who visit Facebook to a spoofed page, which claims to be a part of the social networking website's security check feature," wrote Trend Micro threat response engineer, Anthony Joe Melgarejo.

"It does this by redirecting all traffic to facebook.com and www.facebook.com to the system itself."

The malware used in the scam is reportedly designed to steal victim's personal data. Trend Micro said the malware is particularly dangerous as it has several backup features that make it more difficult to remove.

"Upon further analysis, we also discovered that that the malware performs DNS queries to several domain names. What this means that the people behind this are prepared for server malfunction and have a backup to continue stealing information," wrote Melgarejo.

"In addition, unlike other social media attacks which use fraudulent links, it is an executable which runs every system startup. This poses a big threat to multiple users using an affected system."

The Facebook scam is one of many that uses an established brand as a means to entice users to click on infected links or malicious attachments.

Most recently Security firm AVG linked a series of malicious email messages masquerading as news alerts from the BBC and CNN to the infamous Blackhole exploit kit.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Alastair Stevenson
About

Alastair has worked as a reporter covering security and mobile issues at V3 since March 2012. Before entering the field of journalism Alastair had worked in numerous industries as both a freelance copy writer and artist.

View Alastair's Google+ profile

More on Security
What do you think?
blog comments powered by Disqus
Poll

Green IT poll

How important is it to your business that a cloud provider uses renewable energy like solar or wind to power their data centres?
20%
6%
4%
2%
68%

Popular Threads

Powered by Disqus
Galaxy S5 vs Nexus 5 head to head review front

Galaxy S5 vs Nexus 5 video review

We compare Samsung and Google's top devices

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv3may

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

SharePoint Analyst

SharePoint Analyst- SharePoint, Excel, Support, Workflow...

Change and delivery Project Manager

Role - Change & Delivery Project Manager Location...

CRM Business Analyst - MS Dynamics

Key Skills: Microsoft Dynamics expert Business Analysis...

Project Manager ( Multi-channel, E-commerce, Agile, Management)

Project Manager (Multi-channel, E-commerce, Agile, Management...
To send to more than one email address, simply separate each address with a comma.