European Reseller

Helping bring new products to market

Thursday, May 23rd

Last updateTue, 09 Apr 2019 11pm

You are here: Home Security Naked Videos of Facebook Friends
Hand Held

Naked Videos of Facebook Friends

5MB dumped ComputersWEB AP3937

Facebook or Yahoo Messenger friendspreads Trojan through EMEA

That's the promise that compromises you and then  new Trojan that distributes itself through Facebook instant messaging and Yahoo Messenger

Hundreds of computer systems have been infected with the latest instant messaging Trojan. There has been an increasing wave of infections in the past week in countries such as the UK, Germany, France, Denmark, Romania, the US and Canada. All resellers and dealers have been alerted.

After gaining access to a users’ contact lists, Gen:Variant.Downloader.167 distributes itself through Facebook’s instant messaging and Yahoo Messenger from one friend to another.

Bitdefender has warned that hundreds of computer systems have been infected with the latest instant messaging Trojan.

It starts when users receive a polite question from a Facebook or Yahoo Messenger friend whose system has been infected with the malware. “I want to post these pictures on Facebook, do you think it’s OK?,” the malicious messages read. To add legitimacy, the URLs following the question belong to storage services Dropbox and Fileswap, frequently used for sharing pictures and files, the Trojan also uses biblical verses as decryption keys for its data.

Doom and Gloom

The malware is then executed on the machine, where it creates a folder with a random name and an “.exe” extension. It also shows a message box during the installation process.

“This application is not compatible with the version of Windows you're running,” the message reads. “Check your computer's system information to see whether you need an x86 (32-bit) or x64 (64-bit) version of the program, and then contact the software publisher.” The downloader can restart and update itself.

In May 2013, a similar piece of malware infected thousands of Facebook users worldwide. The Dorkbot malware posed as a “jpg” image but was actually an executable file, capable of spying browser activities and stealing personal data. Another scam reported by HotForSecurity promised naked videos of Facebook friends but delivered Trojan virus instead.

Attackers easily coordinatebots from a control and command server. Besides stealing usernames and passwords, botmasters may also order other malware downloads.