SSCC 8 and another Facebook malware spam

Filed Under: Facebook, Malware, Podcast, Privacy, Social networks, Spam

Trolling through the spam traps this afternoon, I stumbled upon another scam targeting Facebook's attractive 400-million user base. This one purports to be a toolbar that makes it easier to connect with folks on Facebook.

Screenshot of Facebook malware spam

Of course the Download Here link leads to malware. Sophos detects this threat as TROJ/Zapchas-EP. The vast majority of spam continues to market Canadian pharmacies and other Partnerka scams, but spams that spread malware predominantly focus on social media.

Sophos block

From a social engineering aspect, the people behind these attacks are taking advantage of users who are accustomed to receiving regular emails from services like Twitter and Facebook. This regularity increases the likelihood a user will trust the message is genuine and choose to click the link or install the malware.

In this case, Sophos's browser helper object (BHO) proactively blocked the attack. Anti-virus software would also stop this threat, but the earlier you can stop an attack, the better.

This week Michael Argast sat down with me for the Sophos Security Chet Chat episode 8 and we discussed the changes Facebook made with their new Instant Personalization initiative, the value of security certifications and whether organizations are irresponsible for becoming infected with "well-known malware."

If you enjoy this podcast you can download many more via iTunes or directly from our website.

, ,

You might like

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

Chester Wisniewski is a Senior Security Advisor at Sophos Canada. He provides advice and insight into the latest threats for security and IT professionals with the goal of providing clear guidance on complex topics. You can follow Chester on Twitter as @chetwisniewski, on as Chester, Chester Wisniewski on Google Plus or send him an email at