More security threats hit Facebook

Facebook users are again hit by malicious attacks, as the Koobface worm and rogue applications target the site.

Facebook faces more trouble this week, as security threats make their way across the social networking site.

The latest is a variant of the Koobface worm, which targets all the major social networking sites, including Facebook.

Rik Ferguson, a security researcher from Trend Micro, explained in a blog post that he received a message via Facebook, directing him to a video. "The link had taken me to a site supposedly hosting a video posted by the same person that I had received the Facebook message from," he said.

Advertisement - Article continues below

"In fact not only was the malicious landing page displaying his name, it had also pulled the photo from his Facebook profile. A very neat little piece of social engineering."

The site prompts visitors to download a setup.exe file, which in fact holds the Koobface worm. "The worm connects to a respective site using login credentials stored in the gathered cookies," Ferguson explained. "It then searches for an infected user's friends, who are then sent messages containing a link where a copy of the worm is downloaded."

Ferguson warned users "to ignore such messages, and refrain from clicking links in unsolicited messages, even out of curiosity."

The worm follows previous security woes over the past week, including a pair of rogue applications which sent an error message to users of the site. The site also made headlines after changing its terms.

Advertisement - Article continues below

Rob Cotton, chief executive of NCC Group, said users of such sites need to learn to be wary. "The friendly, open nature of social media sites such as Facebook makes them easy targets for hackers as users are very trusting of the content."

Advertisement - Article continues below

"As web 2.0 applications become more mainstream, it is vital that people start to ask questions about where the content and applications are coming from," Cotton added. "We are all careful now about shredding our personal post at home, but we are dangerously unaware of the information we are handing out to online criminals."

Click here to read five Facebook surprises.

Featured Resources

The case for a marketing content hub

Transform your digital marketing to deliver customer expectations

Download now

Fast, flexible and compliant e-signatures for global businesses

Be at the forefront of digital transformation with electronic signatures

Download now

Why CEOS should care about the move to SAP S/4HANA

And how they can accelerate business value

Download now

IT faces new security challenges in the wake of COVID-19

Beat the crisis by learning how to secure your network

Download now


social media

Facebook to start verifying identities of suspicious user accounts

29 May 2020
social media

Social media and the death of truth

29 May 2020
social media

Zuckerberg responds to Trump vs. Twitter

28 May 2020
social media

Trump’s leaked executive order targets social media companies

28 May 2020

Most Popular

Microsoft Windows

Microsoft warns users not to install Windows 10's May update

28 May 2020
data breaches

EasyJet faces class-action lawsuit over data breach

26 May 2020
cyber security

Microsoft bans Trend Micro driver from Windows 10 for "cheating" hardware tests

27 May 2020