New Facebook Worm Spreads

Via Security Watch:

AVG Technologies reported a new worm targeting Facebook users. The worm spreads by putting an alluring picture of a woman on the profile pages belonging to people it infects. The picture will also appear in the person's News Feed.

If you click the picture, it takes you to a malicious site that will ask you to click on a picture if you "want 2 c something hot."

Unfortunately, all the user gets is a worm.

"This worm uses what is technically known as a CSRF (Cross-site Request Forgery, also called XSRF) attack," blogged Nick Fitzgerald, emerging threats researcher at AVG. "A sequence of iframes on the exploit page call a sequence of other pages and scripts, eventually resulting in a form submission to Facebook "as if" the victim had submitted a URL for a wall post and clicked on the "Share" button to confirm the post."

Once you are infected, your profile and status will be updated to show the scantily dressed vixen, and the saga continues. According to Roger Thompson, chief research officer at AVG, the malware does not appear to be related totied to Koobface, which continues to target Facebook and other social networks. The aim of the worm seems to be to direct people to adult Web sites where someone presumably makes money by getting clicks, he said.

"It's interesting though, that such a neat exploit should be "wasted" on seemingly low returns," he told eWEEK. "One wonders if perhaps other folks have been using it for more nefarious purposes."

Describing the worm as new, Thompson said he was unsure how many people have been impacted so far. He added that AVG tested the worm on Windows and Linux machines running Firefox and found it worked successfully.

As always, the advice is to be careful what you click.

See also:

Copyright © Jewish Internet Defense Force
All Rights Reserved

The views expressed on this website do not necessarily reflect the views of the JIDF. The content is not intended to malign any religion, ethnic group, club, organization, company or individual. This site's intention is to do no harm, to not injure others, defame, or libel. All data and information provided on this site is for informational, educational, and/or entertainment purposes only. The Jewish Internet Defense Force (JIDF) makes no representations as to accuracy, currentness, correctness, suitability, or validity of any information on this site and will not be liable for any errors, omissions, or delays in this information or any losses, injuries, or damages arising from its display or use, or access to this site. We are not responsible for translation or interpretation of content. We are not responsible for defamatory statements bound to government, religious or other laws from the reader’s country of origin. All information is provided on an as-is basis with no warranties, and confers no rights. We are not responsible for the actions, content, accuracy, opinions expressed, privacy policies, products or services or for any damages or losses, directly or indirectly, caused or alleged to have been caused as a result of your use or reliance on such information on the Jewish Internet Defense Force site. This site includes links to other sites and blogs operated by third parties. These links are provided as a convenience to you and as an additional avenue of access to the information contained therein. We have not reviewed all of the information on other sites and are not responsible for the content of any other sites or any products or services that may be offered through other sites. The inclusion of these links in no way indicates their endorsement, support or approval of the contents of this site or the policies or positions of the JIDF. We have the right to edit, remove or deny access to content that is determined to be, in our sole discretion, unacceptable. These Terms and Conditions of Use apply to you when you view, access or otherwise use this blog and the Website. The JIDF is a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for sites to earn advertising fees by advertising and linking to
Related Posts with Thumbnails