teknote systems corporate blog

Are you a Facebook member? If so, pay attention to the latest hijack threat as reported here by PCWorld:

Hot on the heels of a reported hijacking of hundreds of Facebook groups, a new variation on an old worm is crawling its way into the social network’s walls. Attackers have released an updated, more intelligent version of the notorious Koobface virus, security analysts say–and anyone could become its next victim.

The Facebook Hijack

First, the hijacking: An organization called “Control Your Info” apparently took control of as many as 300 Facebook groups over the past several days. Members added their own logo onto the pages, announcing they’d “hijacked” the groups and providing a link back to their own site.

(Facebook maintains no confidential information was ever exposed–the affected groups, representatives say, were abandoned and open for any member to take over.)

The “Control Your Info” Web site states that the organization’s mission was to expose security holes in social media–a fitting segue to today’s new threat.

Facebook’s New Concern

The new threat has a familiar name. Koobface–which, by the way, is an anagram of the word Facebook–first popped up in mid-2008 and has been pestering users ever since.

The worm typically works by taking over your PC, then sending messages or wall postings to your friends. The messages include links to what appear to be funny videos or risqué photos of people you and your friends know. Anyone who follows the links, however, will ultimately end up infected with the malware themselves–usually by way of a bogus software update that pops up on-screen. [more]

Most computer users are familiar with shareware and spyware, but new on the internet is a ‘ware’ called scareware that is scary indeed. Sneaking into advertisements commonly displayed on social networking sites, blogs, and trusted web addresses, this newfangled type of cybercrime is intended to tap into your wallet and/or identity. To learn more about how to protect yourself from scareware, read Symantec’s latest news release feed:

Cybercriminals Use Fear and Anxiety to Convince Users to Buy Rogue Security Software

MOUNTAIN VIEW, Calif. – October 19, 2009 – Symantec Corp. (Nasdaq: SYMC) today announced the findings of its Report on Rogue Security Software. The study’s findings, based on data obtained during the 12-month period of July 2008 to June 2009, reveal that cybercriminals are employing increasingly persuasive online scare tactics to convince users to purchase rogue security software. Rogue security software, or “scareware,” is software that pretends to be legitimate security software. These rogue applications provide little or no value and may even install malicious code or reduce the overall security of the computer. [more]

Symantec’s Security Response Weblog talks about the latest ‘Spam Attack: Zipped Trojan’. Make sure those virus definitions are updated and read more below or at this link:

Security Response has seen a large spam run of what appears to be the latest in the line of Trojan.Peacomm variants. While this is nothing new, this time around the attachments are in the form of password-protected zip files. The recipient is tricked into unzipping the attachment with the included password, then running the unzipped file, to counteract activity related to an unknown worm (with which the recipient has undoubtedly been infected)…