Malware writers are once again counting on the female allure to draw in yearning and unwary men. “Hi baby, please check my facebook profile” or “I miss you, check my new photo please” are just a few of the lines meant to trick users into clicking on malicious websites. Scammers even use authentic pictures of international models grabbed from their social network accounts.
A new spam campaign targeting social media users deploys a Java Script Trojan when clicking on a link allegedly from a woman who wants to share her pictures or videos. Malware is then executed on the computer and can secretly download malicious files from a remote server controlled by the attackers.
After the first click on the bogus Facebook link, users are redirected to what seems to be an Australian website. A Java code is then automatically downloaded and installs Trojan.JS.Downloader.BNM, malicious software written in Java Script language that can compromise users’ personal information.
Bitdefender not only blocks the spam e-mails but also the malicious website if users still “insist” on seeing the woman’s Facebook pictures or videos.
To stay away from this type of scam, users are advised to keep their antivirus and other software updated. For maximum social media protection, they can also install the free application Safego, which creates a safe environment for Facebook and Twitter accounts.
This article is based on the samples provided by Daniel Ichim, Bitdefender Spam Researcher.
All product and company names mentioned herein are for identification purposes only and are the property of, and may be trademarks of, their respective owners.
:))
maria.vaca , maria.cif(f) , next version will be maria.ariel & maria.domestos
excuse my black humor :-D
nice article.Happy new year
I’m using BD free edition. It’s protecting my pc from these types of threats. I’ve saw that message while opening a page. Thanks BD
Thanks for the information
we men just can’t help it:P
it is a weak spot
Hello guys! Thanks for your comments. Men sometimes don’t mind getting infected with a couple of Trojans if they’re able to see a sexy Facebook pic :)
[…] time, Facebook users are under fire from Java Script Trojans spreading through messages such as “Hi baby, please check my facebook profile.†Scammers even use authentic pictures of international models grabbed from their social network […]
[…] to spread scams such as “Lost all the respect for Miley Cyrus after watching this video†or “Baby please check my Facebook profileâ€. Be careful not to fall into the likejacking trap, as the ‘like’ scammers grabbed from your […]