McAfee Labs

Spammed malware linked into your Facebook photo

2
By on Nov 27, 2010

This most recent attack technique appears as an arriving email but contains a crafted malicious link. The attack is camouflaged as a Facebook correspondence alerting the victim that a friend “commented on your photo”. Although new security procedures are being implemented to protect Facebook users, cybercriminals will continue to aggressively abuse this and other social networks.

The sender name is counterfeit and the email is NOT a Facebook address. When you run your cursor over the fake Facebook link it then becomes visible that it will redirect to a suspicious page; [***].org.ua/e107_files/cache/facebookredir.html, followed by an encoded script that direct users to another malicious page: P[**]o[**]e.com/wefretyutresrtydrtse/etf****izc.php.

Last week, Facebook announced their new Messaging system that will be launching in the next few months. Certainly it will give better control to users, and will possibly minimize some issues but we at McAfee Labs expect spammers and cybercriminals to attempt abuse as well. I’m a firm believer the most powerful tool is still common sense alongside some best practices: be an informed, safe and protected user.  Always keep your security software up to date!

2 Comments

  • Joseph Salmon

    Very informatite,McAffee is beginning to look like a leader in fighting the cyber bug world of deception and trickery.Being on a limited income and unable to work I would be hardpressed to come up with $$$ to pay for a new laptop or costly tech support if I became a victom of attack.Is there a way.

  • Schwertransporte

    are you familiar with this attack? What i mean…what does this attack do, how can i as a user identify that i was attacked by this “mail-virus”…its not me, who opens mails on this computer.

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>