Twitter, Facebook and other micro blog applications are fast becoming the favorite cradle for viruses.
Micro blogs are popular with many who do not have time to maintain a full fledge blog of their own, but still want to pen down their thoughts. Twitter, Buboo, Plurk, Facebook… are good avenues for this and with the increasing popularity, it has also provided a platform for virus to “grow”. From Twitter Clickjacking Hack Released, a Web developer has released a proof-of-concept clickjacking attack targeting Twitter that demonstrates how an attacker could take over a member's "update" function on the microblogging site. All it takes is for the victim to click on a seemingly innocent link on a Webpage while logged into Twitter, and then his or her "What are you doing?" status is under the attacker's control.
Can it be that serious? Below are 12 examples of Facebook related virus the uses social engineering tactics.
1. Search for Facebook related string from Cookie
2. Compromised Facebook accounts sents impersonated “bad” messages
3. Worm impersonates FBI to check on Facebook for terrorists
4. Email Harvester – Post on Facebook wall “Your Facebook pics are all over online”
5. New Koobface variant installs malware to view video
6. Phishers spoof Facebook (again)
7. New friend request email is first step into the trap
8. Malware confirmed you as a friend in Facebook
9. So is it Twitter or Facebook?
10. Secret Crush on Facebook reveals its true self
11. Rogue Facebook App Linked to Blackhat SEO
12. Data Harvesting via violation of Terms and Conditions
Users, Facebook users especially, are now protected from all above threats through the Trend Micro Smart Protection Network. Related rouge websites have been blacklisted and blocked. The Trend Micro Smart Protection Network is a next generation cloud-client content security infrastructure designed to protect customers from Web threats. “In-the-cloud” technologies are able to filter off junk mails even before they reach your email inbox, not allowing any chance for malware to deploy themselves. In addition, Trend micro is able to detect all above threats including:
Other than Facebook, other social networking websites have also become targets for hacking.
- Orkut Users Targeted in Malware Campaign
- Bogus LinkedIn Profiles Harbor Malicious Content
- ‘Classmates Reunion’ Used as Malware Ploy
- Malevolent Social Networking: Now on Friendster
- Fake Bebo Profiles Spam Early, Spam Often
- Scammers Dive in to LinkedIn
Note: Clickjacking takes the form of embedded code or script that can execute without the user's knowledge, such as clicking on a button that appears to perform another function.
Comments