Miley Cyrus, Justin Bieber Facebook Spam Reemerges
Recently we reported about a scam that targeted Facebook users which turned users who are curious about stalkers into unwilling spammers. Now we are seeing newly created domains that are related to yet another scam targeting Facebook users, this time using social engineering lures already seen in the past.
The said domains were seen linked with certain Facebook posts, bearing messages such as the following:
- ”This Guy Took A Picture Of His Face Every Day For 8 Years”
- “Look What Happens When Father And Daughter Meet On Chat Roulette”
- “I can’t believe a GIRL did this because of Justin Bieber”
- “SICK! I lost all respect for Miley Cyrus when I watched this video!”
The domains created have similarities of keywords, all bearing words such as: daddy, busted, guy, face, pic, miley and bieber.
Once a user visits a Facebook post bearing the a link to the said domains, the user will get redirected to a YouTube-like webpage, a technique typically utilized by the infamous KOOBFACE gang. The page in actuality contains nothing more than an image which resembles a page from the video-sharing site.
When the user clicks on anywhere within the page, this opens a prompt for the user to answer a certain survey, placed supposedly to confirm the viewer’s age.
However, what happens really is that a malicious script detected by Trend Micro as PHP_FBJACK.A accesses the user’s Facebook account and posts a link to the same malicious page along with a message similar to the ones listed above.
Facebook was named the most dangerous social networking site in 2010, and it still is, considering the numerous attacks that target Facebook users every day. Thus it is important for Facebook users to be extremely cautious when navigating through the network, especially in clicking shared links, even those posted by trusted contacts.
The Trend Micro™ Smart Protection Network™ already protects users from this attack as related URLs and scripts are now blocked and detected respectively.
Post from: TrendLabs | Malware Blog – by Trend Micro
Miley Cyrus, Justin Bieber Facebook Spam Reemerges
Spotlight
Cloud Computing
- Security in backups means more than just encryption
- Employees must buy into the company policy for better cloud security
- Desktop virtualization can enhance security performance
- Cybersecurity cooperation becoming military necessity
Virtualization
- Virtualization-specific challenges could threaten data security
- Evolving threats put security skills in high demand
- Virtualization security requires education, access control management
- Tips for launching effective virtual security tools
Internet Safety
- Virtualization-specific challenges could threaten data security
- Evolving threats put security skills in high demand
- Virtualization security requires education, access control management
- Tips for launching effective virtual security tools
Vulnerabilities & Exploits
CTO Insights
First Line of Defense
Newsletter
Stay up to date with the latest news and information on online threats.
Recent News
- FBI trying to train financial execs on cyber threats
- Wall Street has data security concerns over Bloomberg reporting
- Security in backups means more than just encryption
- Employees must buy into the company policy for better cloud security
Tag Cloud
cloud cloud computing cloud computing security Cloud Security Compliance & Regulations Consumerization Current News cybercrime Data Privacy data security Encryption Government Policy Internet Protection Internet Safety Internet Safety - DO NOT USE Internet Security Malware Mobile Security Mobility Policy Policy - DO NOT USE Privacy Privacy & Policy Private Cloud Public Cloud Reports Research Spotlight threat intelligence threat research Trend Labs Underground Economy virtualization Vulnerabilities Vulnerabilities - DO NOT USE web security web threats
Comments
No comments yet