Hackers on the prowl : Spoofed email message can introduce a virus into your system
The next time you get an enticing Facebook message inviting you to watch the video of a beautiful dancing girl,think twice before clicking the link. If you do,you will be eventually guided to a site where hackers can get your personal information like credit card number,username or password and use them to their advantage.
After the worm Koobface that hit social networking site Facebook recently,it is now the turn of spoofed email messages that lead to a malicious site.
According to Websense Security Labs that keeps a tab on Internet attacks,its Threat Seeker Network has received reports of spoofed email messages,which look like legitimate Facebook messages and invite recipients to click on a link to view a video.
When the recipients of this message click the link,they are taken to a malicious website that looks similar to Facebook and prompts them to install a file called Adobe_Player11.exe, said Manish Bansal,marketing manager,Websense Software Services India Pvt Ltd.
VirusTotal,a service that analyses suspicious files and facilitates the quick detection of viruses,worms,Trojans,and all kinds of malware detected by antivirus engines,said the virus Adobe_Player11.exe had very little anti-virus coverage.
The subject of the mail could be dancing girl drunk in the pub,facebook video,magnificent striptease dance,watch the Ooh! super beautiful girl dancing,hot girl dancing at striptease dance party,or anything like that.
Once the virus gets installed,a hacker can get personal identifiable information like credit card number,username or password leaking and steal any personal or confidential documents, said Websense.
According to Websense,more and more hackers are now using social networking sites to target people for financial gains. The trend to target social networking sites started 6-8 months ago. Due to their popularity,Orkut and Facebook were targeted more by hackers. If it was a virus attached spooked Orkut mail that they used first,later they started giving the url of a site that,if clicked,downloads a virus like Trojan Horse, said Bansal
Most of the time the anti-virus installed in a system scans the e-mail attachment and now hackers have gone a step forward to paste url of sites in the body of emails which seldom gets scanned.
Hackers lure people to click on these mails or with tempting messages directs to malicious websites. It is difficult for social networking sites to scan the entire activity because it is getting updated every second. The hackers are targeting web 2.0 platforms that allows user to add or edit the content, Bansal said.