SJA Mobile

Warning for both users and administrators are being spread out upon the uncovering of a new range of Facebook malware. It circulates through a malicious worm application which hijacks Facebook information. The user is sent a message from an infected friend which promises a link to a YouTube video.

Then the victim is guided to a third-party site which scans the user’s OS. Users running Windows are forwarded to the attack page while users running other OS are sent to the actual YouTube front page.

Once there, users are motivated to download an updated version of Flash which is needed to view the file. The installer, however, delivers the malware payload in what is known as a “fake codec” attack.

Upon infection, the malware installs and launches a new copy of the worm, scans the user’s Facebook system cookies and uses the information to send new attack messages to the victim’s friend list.

This entry was posted on Monday, October 27th, 2008 at 5:27 am and is filed under Mobile News. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.