Facebook Fan Check Virus scare leads to malware

Filed Under: Facebook, Google, Malware, Social networks, Video

Beware of Googling (or indeed Yahooing or Binging or using any other internet search engine) for information about something called "Facebook Fan Check Virus", as you're likely to end up on a website hosting malicious code.

Watch this YouTube video for an explanation:

(Enjoy this video? You can check out more on the SophosLabs YouTube channel and subscribe if you like)

The phrase "Facebook Fan Check Virus" is currently a hot trending topic on Google, with many net users searching for information.

However, hackers have set up websites pretending to be about the "Facebook Fan Check Virus", but which really host fake anti-virus software which display bogus warnings about the security of your computer in an attempt to get you to install fraudulent software and cough-up your credit card details.

Facebook Fan Check search results

The bogus warnings look near identical to previous fake anti-virus software attacks that we have seen in the past - with a scrolling green progress bar and a list of alleged threats found on your computer displayed in a dramatic red colour scrolling up.

I visited one of the sites on my Apple Mac running Safari (see screenshots below) and was bemused to see the fake anti-virus told me that my laptop was infected with a number of threats that only infect Windows computers.

Fake anti-virus warnings. Click for larger version

Fake anti-virus software alerts are displayed if you visit pages which claim to be about the Facebook Fan Check Virus

Sophos's web-filtering products detect the malicious webpages proactively as Mal/FakeAvJs-A. The analysts in SophosLabs are analysing the fake anti-virus malware downloaded by these sites, and will be issuing detection as Troj/FakeAV-ZT.

So, the obvious question is - why would you be searching for the phrase "Facebook Fan Check Virus" in the first place?

Well, it seems that Facebook users have got themselves in a tizzy about an application called Fan Check.

Facebook Fan Check application

We haven't been able to confirm that the Fan Check application (also known as Stalker Check or FanCheck) is malicious in itself, although some Facebook users appear to be concerned that it might be behaving inappropriately. However, what is definitely happening is that fear about the application is leading internet users into danger.

Rather like the "Error Check System" application which raised concerns on Facebook in February, online rumours about Fan Check's secret agenda is causing thousands of people to turn to the internet for further information - leading them straight into a trap set up by cybercriminals.

If you're a regular user of Facebook, be sure to join the Sophos page on Facebook to be kept informed of the latest security threats.

, , , , , , , ,

You might like

About the author

Graham Cluley runs his own award-winning computer security blog, and is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s. Now an independent security analyst, he regularly makes media appearances and gives computer security presentations. Send Graham an email, subscribe to his updates on Facebook, follow him on Twitter and App.net, and circle him on Google Plus for regular updates.