Technology with attitude

How Scammers are Using Facebook for Distributing Malware

0

Scammers have now found a new way of distributing their malware to as many people as possible.

Facebook is quickly becoming the platform of choice for this caliber of scammers. When you notice what looks like a video installer file for Google Chrome, opening it would only expose your Facebook account to the work of scammers. For that reason, exercising caution is the best path you can take to keep your Facebook account safe from the work of scammers.

The approach taken by the scammers is to send the link to one of your friends on Facebook and ask him to forward the file to as many people as possible. If the friend is naïve enough to send the link, you will receive the file and feel compelled to open because you trust him. Opening the file will take you to a page that looks erringly like Facebook. Within no minute, you will have downloaded Chrome_Video_installer.scr, which is the video file installer mentioned above.

If you have powerful antivirus software, it will identify the file you just downloaded as TROJ_KILIM.EFLD, which is nothing other than malware. What happens after clicking the link, opening and downloading the file is that it will connect you to specific websites where your Facebook account will be receiving and sending information. The attack initiated by this particular malware seems to target Facebook users from the following countries:

  1. Philippines (36 percent)
  2. Indonesia (6 percent)
  3. India (6 percent)
  4. Brazil (6 percent)
  5. US (5 percent)

To be safe from such an attack, you need to avoid clicking on strange links, even if a friend appears to have sent such. Secondly, remember that Google only recommends downloading extensions from its Chrome Web store. Check if the extension is on the Web Store. If it is not there, do not take the risk of opening and downloading extensions or links from a third party or untrustworthy sites lest you compromise your Facebook account.

What this trend proves is that Facebook and Google Chrome are currently the most popular platforms among hackers and scammers. The hackers and scammers use these two platforms to perform nasty social engineering schemes. Although Google and Facebook, which are the leading search engine and social media platforms in the world, have taken measures to remedy the situation, they appear incapable of keeping up with scammers and hackers.

TROJ_KILIM.EFLD is just but one of the malware capable of tracking your browsing history and share this information with third party sites. Such malware can also inject ads that give you a difficult time when using your PC, laptop or gadget of choice for browsing or performing other similar tasks. Signs that you should look out for to determine whether your machine has fallen victim to such malware include the following:

  • broken web pages
  • strange ads
  • sluggish browsing or low speeds

Therefore, learn to identify ways through which to keep your machine and Facebook account from such types of malware. Do not open or click strange links allegedly sent to you by one of your Facebook friends. Open and download extensions only from Chrome Web Store. Never trust any third party site no matter how genuine it appears. If you think the account is already hacked, hire an IT specialist to help remedy the situation.