Facebook and MySpace users hit by cyber attacks
Facebook users - already being targeted in a malware campaign - are now under threat from a phishing scam.
Security specialists Symantec report that the company's systems have picked up fake messages that appear to be sent by the social networking service.
Users will receive an email that looks like an official Facebook invite or a password reset confirmation.
If a duped user clicks on the 'update' button they will be redirected a fake Facebook site. They will then be asked to enter a password to complete the updating process.
As soon as the unwitting Facebook user does this, their password is in the hands of cybercriminals.
Dodgy subject lines for the phishing emails are: 'Facebook account update,' New login system' or 'Facebook update tool'.
The malware campaign that is still targeting Facebook is also propagated via email. This time, the message looks like a Facebook notification that the recipient's password has been reset.
It includes a zip file that, if opened, launches an .exe file, which Symantec's Security Response centre says is a net nasty called Trojan.Bredolab.
Once a users' machine is infected by this malware, it secretly dials back to a Russian domain and, Symantec says, "is most likely becoming part of a Bredolab botnet."
But it isn't just Facebook that is being lined up by cybercriminals; News Corp's MySpace is also under attack.
Potentially dangerous email subject lines to look out for are: 'Myspace Password Reset Confirmation,' 'Myspace office on fire' and 'Myspace was ruined'.
Symantec believes there will be another attack on MySpace in the next day or two.
"We also think that social networking sites with huge user bases are currently being targeted to infect maximum machines or gather passwords for more malicious activities in future," the security team said in a statement.
It advised users to be extra-careful of suspicious attachments, especially those including password reset requests. Legitimate websites will not send an attachment for resetting a password, it said.
Source: NZ Herald
Life & Style blogs
Plus live in a folly tower and Towcester growth
Plus how much you need to earn to rent in London, and new homes figures
Plus where The Apprentices live, house price growth outside London, and househunter numbers
The 10 Best Scotch Whiskies
Casualty in crisis: A&E - a service in meltdown
The myth of the modern dad exposed: New book claims men still won't sacrifice their careers for fatherhood
The experts' guide to summer: From getting fit for the beach to recreating that Olympic buzz
Obsessive compulsive hoarding: A serious health risk in store
- 1 Heading for America? Prepare for the longest US immigration queues ever
- 2 Notes from a small island: Is Sealand an independent 'micronation' or an illegal fortress?
- 3 You thought Ryanair's attendants had it bad? Wait 'til you hear about their pilots
- 4 David Cameron goes to war with newspapers over 'swivel-eyed loons' slur
- 5 It’s official: thanks to Stephen Hawking's Israel boycott, anti-Semitism is no more
BMF is the UK’s biggest and best loved outdoor fitness classes
Find out what The Independent's resident travel expert has to say about one of the most beautiful small cities in the world
Win anything from gadgets to five-star holidays on our competitions and offers page.
iJobs Gadgets & Tech
£50000 - £58000 per annum + Benefits and Bonus: Progressive Recruitment: SAP F...
£240 - £260 per day: Progressive Recruitment: WPF Developer (C#, VB.Net) North...
Negotiable: Progressive Recruitment: Windows 7 upgrade UAT Application Testing...
£50000 - £55000 per annum: Progressive Recruitment: An experienced Perl Develo...