Baby Please Check My Facebook Profile (and My Trojan)

Malware writers are once again counting on the female allure to draw in yearning and unwary men. “Hi baby, please check my facebook profile” or “I miss you, check my new photo please” are just a few of the lines meant to trick users into clicking on malicious websites. Scammers even use authentic pictures of international models grabbed from their social network accounts.

A new spam campaign targeting social media users deploys a Java Script Trojan when clicking on a link allegedly from a woman who wants to share her pictures or videos. Malware is then executed on the computer and can secretly download malicious files from a remote server controlled by the attackers.

After the first click on the bogus Facebook link, users are redirected to what seems to be an Australian website. A Java code is then automatically downloaded and installs Trojan.JS.Downloader.BNM, malicious software written in Java Script language that can compromise users’ personal information.

Bitdefender not only blocks the spam e-mails but also the malicious website if users still “insist” on seeing the woman’s Facebook pictures or videos.

To stay away from this type of scam, users are advised to keep their antivirus and other software updated. For maximum social media protection, they can also install the free application Safego, which creates a safe environment for Facebook and Twitter accounts.

This article is based on the samples provided by Daniel Ichim, Bitdefender Spam Researcher.

All product and company names mentioned herein are for identification purposes only and are the property of, and may be trademarks of, their respective owners.