Jul 23 Tagged in a Facebook Photo? You’re It! Pix Notification Emails Spread Malware.
When the ancient Greeks built the famous horse with the soldiers hiding inside and left it as a present for the Trojans, it produced the proverb “Beware of Greeks bearing gifts.” With a slight revision, the saying could also be used as a warning about the latest Facebook malware scam. “Beware of geeks bearing pix.”
Here’s how the scam works. The person being targeted receives an email purportedly from Facebook telling him/her that someone the victim knows “added a photo of you.”
For all intents and purposes, the email looks exactly like a legitimate Facebook notification. Well, in the one that security expert Graham Cluley referred to in his story on nakedsecurity.sophos.com, there was one slight discrepancy from a genuine Facebook notification. The “from” address spelled Facebook, Faceboook.
Anyway, anybody who didn’t notice the extra “o” might very well click on the email link. If he/she did, the victim’s browser would be taken to a website hosting malicious iFrame script. However, to hide the browser having been re-routed, within four seconds, it’s taken via a META redirect to an innocent individual’s Facebook page.
Cluley notes, “Even if you didn’t notice that ‘Faceboook’ was [spelled] incorrectly, [by holding your mouse over the link,] you could have seen… the link…wasn’t going to take you directly to the genuine Facebook website.”
Every day appears to bring a new scam. While you may be able to ensure your employees won’t become victims of social engineered malware, you can’t say the same for your customers who could innocently slip malware onto your enterprise. For maximum protection from all malware and malefactors, look to ThreatMetrix.
ThreatMetrix™ offers a complete package of online protection including secure browsing technology that protects smartphones and other devices against malware and stops man-in-the-browser (MitB) attacks. The ThreatMetrix™ Cybercrime Defender Platform is the first industry solution that integrates sophisticated malware detection and advanced device identification technologies in a single, unified platform. This unified approach to cybersecurity is a game changer. By integrating malware detection and device identification with shared, centralized intelligence, ThreatMetrix delivers the unique ability to protect the integrity of entire online transactions. And, it’s done without relying on passwords, user names and cookies to protect its clients. The ThreatMetrix Cybercrime Defender Platform uses anonymous data from the computer, its connection to the Internet and contextual data from a transaction to sniff out cybercriminals of all types, as well as spies and hackers.