Beware! Facebook phishing attack with BredolabSo today I wake up early too.
Look at my clock.. Oh it's just 5a.m.!
Early like hell!
Can't force myself back to sleep and nothing to do.
So I went to my computer and surf net.
Suddenly found a scary news from MX Logic.
It's about phishing attack under Facebook email address by some bad hackers.
And here's a part of the article.
Facebook users should be on the alert for a phishing attack that appears to come from Facebook itself for a password reset. Phony spam emails from the Bredolab botnet are tricking Facebook users into downloading a Trojan malware.
The cyber attackers are criminals with servers based in the Netherlands and Kazakhstan, according to Websense, the web security firm. The Facebook phishing attack comes from a botnet of hacked computers called Bredolab.
The sending address on the spam emails uses support@facebook.com "to make the messages believable to recipients," Websense reported. The emails have an attached file that, if opened and clicked, downloads the Trojan that takes over a victim's PC.
To view the full article, click here.
MX Lab has a more detailed article about this Bredolab.
From its article, we know that Bredolab uses injection method to bypass firewalls and downloads/executes harmful files from Internet.
Bredolab even creates several files in local computers and creates connection to a few remote hosts on port 80.
Yes, port 80 is definitely a common trusted port for computers.
For more details related to this article from MX Lab, click here.
So Facebook users please beware of this and inform others.
Always take care of your computer.
Stay away from being one of those pity victims =P
Click to view song tracks in current playlist
