[Malware Warning] Facebook Password Reset E-mails

on March 19, 2010

Yet another warning about Facebook.

This week (and weeks to come maybe?) many people around the world have received an e-mail message supposedly from Facebook with a message that their user password has been reset and attached to the e-mail is a .zip file.

DO NOT OPEN THE ATTACHMENT

My fiance’ received such a message and while it says from “support@facebook.com” the e-mail has been spoofed; meaning it actually came from another source but is trying to look like it came from Facebook.com.

I was not able to get a screen shot from him but I did find one on the interwebs.

Facebook Malware

Now, a lot of people may pick up quickly that this e-mail is fraudulent. The verbiage, lack of name, lack of signature and privacy statement and the fact that you have to download an attachment to get said “password”, but for those that aren’t quite sure. It’s FAKE.

According to McAfee Security the attachment contains downloaders, password trojans, just to name a couple. Either way, it’s bad news for you and your security.

If you ever receive a suspicious looking e-mail from Facebook, please report it to Facebook’s Security Team.

Filed Under: News, Security, Social Media, Technology Tagged With: , , , , , ,

[Scam Warning] Rogue App Claims to Track Who's Viewing Your Profile

on March 17, 2010

Somehow, someway Facebook has allowed at least 25 applications with such names as peeppeep-pro, profile-check-online and stalk-my-profile that claim to be able to tell you who has been viewing your Facebook profile. All of which have been identified as SPAM.

If you install this app, you will simply be taken through of series of convincing looking set-up screens but now matter how many times you “Continue” you never activate any actual application that tells you who’s viewing your profile. Instead, you’re pushed through to other Facebook Apps earning the creator profits and giving you nada.

Other versions of this application creates a photo montage of infected users and posts it tagging the users to add to its more “authentic” look.

Facebook has since removed the apps but they may still appear. If they should arise again, remember this: Facebook has no official functionality to see who has been viewing your profile. If you see an application like this, it’s scam to simply generate revenue for ad affiliates with clicks and hits.

Thanks to Trend Micro for this information.

Filed Under: News, Security, Social Media, Software/Applications Tagged With: , , , , ,