Facebook is undoubtedly the highest-profile social networking site around with more than 500 million active users, half of whom log in on any given day. It shouldn’t be a surprise therefore that its name is now being used for scams—even for things that don’t have anything to do with social networking.
Earlier this week, we received fake email messages that purportedly came from Facebook. These spammed messages, written in very bad English, warned users that their IP addresses were sending numerous spammed messages to different email addresses.
The spammed message also says that Facebook thoughtfully provided a freeware tool to stop the user from spamming others. Opening the tool, which the message calls FB IPsecure, shows:
Unsurprisingly, however, the tool is actually a malicious file. It is a ZeuS variant Trend Micro detects as TSPY_ZBOT.XXT. Given that malicious attachments are a favored way of spreading ZeuS variants, this isn’t really new. In terms of behavior, nothing separates this particular variant from others that are in the wild today.
Trend Micro products protect users by detecting the malicious file as well as by detecting and blocking this particular spammed message from landing in users’ inboxes. We also advise all users to be very careful about opening attachments from unknown people in general, as these are frequently malicious and may cause harm and infect their systems. In particular, messages that supposedly come from reputable sites like Facebook but contain plenty of grammatical and spelling mistakes should be treated as very suspicious.
– Merianne Polintan (Anti-spam Research Engineer) on TrendLabs | Malware Blog – by Trend Micro
Related Posts
- Malicious Spam on the increase again
Malware distribution via email is far from dead. While we had a distinctly quiet period from October 2010 to March 2011, our stats show the bot herders are gearing up again with the proportion o... - This is how hacker steal your Facebook password
There's many attackers out there who want to steal your credential information. And no doubt, Facebook as one of the largest Social Networking sites in the world, always been a target of attack from t... - Emsisoft Security Ticker: Warning! Surprise spam trojan on Facebook
Emsisoft Security Ticker: Warning! Surprise spam trojan on Facebook
Full story: a-squared - English... - Warning: Surprise spam trojan on Facebook
Emsisoft - Ever received messages from your Facebook friends containing a notice or invitation, such as an invitation to visit a particular site, added with an interesting message, like “Hey watch thi... - Facebook comment-jacking? OMG! I Can’t believe JUSTIN Bieber did THIS to a girl
It's starting to seem like Facebook can't win against those who wish to use their service to scam, spam and simply cause trouble. Over the last day or so, a new type of attack has been spreading using... - Malware spammed out as “FaceFacebook Support”.
Another Facebook spam mail pretending that your password is not safe, currently circulating on Internet. The subject is: FaceFacebook Support. Personal data has been changed!ID55733. The email comes w... - “Download photoalbum” another variant of “i got u surprise”
Previously we have written about the "i got u surprise" spam trojan on Facebook. And today, we still discovered another variant. This time, the message that is received by the victim is only "u?" and ... - Anger after scam-exposing community shut down by Facebook
In a bizarre and hard-to-understand move, a Facebook page which claims it helped countless Facebook members stay safe online on the social network has been shut down... by Facebook.
The Bulldog Estate... - How to report a Facebook scam
At some point in your life, one or several of the Facebook scams out there might affect you enough to look for ways on how to report them and go on a vendetta rampage against the scam creator. I... - Facebook scam “My Top 10 stalkers” targets users in specific countries
A new spam campaign, similar to campaigns we have seen in the past, is spreading on Facebook. This one, however, has some interesting twists to it. The core of the campaign in...
Posted on 02 December 2010. Tags: About, Facebook, Fake, from, Spam, Warning
