Fake Facebook E-mail Infected with Trojan

Nov 26
10:09

2009

Angeline Mabute

Angeline Mabute

  • Share this article on Facebook
  • Share this article on Twitter
  • Share this article on Linkedin

Beware of Facebook if you are addicted to it because MX Lab, a security firm, detected a new variant of Bredolab Trojan horse attached to a fake “Facebook Password Reset Confirmation” email.

mediaimage
Are you addicted to Facebook? Beware!

Because MX Lab,Fake Facebook E-mail Infected with Trojan Articles a security firm, detected a new variant of Bredolab Trojan horse attached to a fake “Facebook Password Reset Confirmation” email. Some users claim that the e-mail comes from “The Facebook Team" where the sender’s e-mail address is displays as “service@facebook.com.”  Unfortunately, the address and sender were disguised.

The said e-mail is accompanied with an attachment named "Facebook_Password_4cf91.zip”, also includes the file Facebook_Password_4cf91.exe" and contains the new Facebook password of the user. When you run the file, it could cause destruction on your computer. According to MX Lab, Trojan horse Bredolab executes files from the Internet such as rogue anti-spyware. It is a malicious malware that injects its own code into legitimate processes svchost.exe and explorer.exe to bypass firewalls. It also contains anti-sandbox code which allows Bredolab to quit by itself when an external program investigates its actions.

M86 Security, another security watchdog, said that Bredolab don’t just sneak into the computer of the user but also downloads a bot called Pushdo. Pushdo will immediately start spamming out more Facebook password reset e-mails. Facebook explained that the e-mail containing the virus is not coming from them. According to them, they will never send users a new password as attachment. They advised the users to immediately have their computers run a virus scan. Facebook users should be careful with a fake e-mail disguising as a Facebook password reset e-mail containing an attachment of the new password but in reality, contains a virus.

Facebook is one of the most popular social networking sites worldwide. With these fake and infected Facebook e-mails spreading around, users must be careful in opening and downloading malicious e-mails and attachments. If your computer has been infected with Bredolab Trojan horse, contact Techie Now. We are willing to solve your problem. With our virus removal services, Techie Now will treat your computer right and everything will be alright.