acebook and social networking sites in general,continue to grow exponentially in popularity and use.
As a result, they are becoming one of the primary attack methods for cyber criminals. Below, we've
included information on a few recent attacks for your reference.
Facebook Password Reset:
http://blogs.zdnet.com/security/?p=4724In this attack, an email pretending to come from Facebook support(specifically
'[email protected]')
explains to the victim that their Facebook password has been reset. It then states that the email has
an attachment that contains their updated password. As you can guess, the attachment simply infects
the end user's system (becoming part of the Bredolab botnet).
Facebook Fake Videos:
http://www.f-secure.com/weblog/archives/00001796.htmlA common trick is to send friend's links about new videos they want to share. This is very common in
Facebook, so emails like this are not unexpected. However, attackers simply setup websites that look
like Facebook. Then, to watch the video the victim has to update their video player. As you can guess
the update is not a video player but malicious software that infects and takes over the users system.