Facebook worm poses as two blonde women

Filed Under: Facebook, Malware, Social networks

Blonde womanIf you're a Facebook user be on your guard against the latest worm reportedly spreading on the system.

First identified by Danish security researchers at CSIS, the worm appears to have been spread via malicious links on the social networking site.

The danger, of course, is that one of your Facebook friends may have had their account compromised (maybe they were sloppy with their password security, or gave access to a rogue application) and you might be tempted into clicking on a link seemingly posted by them.

Although the links pretend to point to an image, the truth is that a malicious screensaver is lurking behind an icon of two blonde women:

The malicious file has an icon of two blonde women

When the code is run it attempts to download futher malware hosted on a compromised Israeli website.

At the time of writing, the malware is not present on the Israeli website (all that remains is a message seemingly from the hackers), but it is very possible that they are using additional websites to spread their malware attack.

Hacked website

Sophos products detect the malware as the Troj/Dloadr-DKK Trojan horse. If your PC becomes infected it is possible that you also have other malware on your computer, some of which may attempt to steal your banking information or compromise your PC in other ways.

Make sure that you keep informed about the latest malware attacks, scams and other threats on Facebook. Join the Sophos page on Facebook, where over 150,000 people regularly share information on threats and discuss the latest security news.


You might like

4 Responses to Facebook worm poses as two blonde women

  1. Eric · 1367 days ago

    The threat is identified, and plenty of details are included, but how is this initially manifested in the FB user's interface? What do you see on your FB page, and what actions should be avoided? A bit more detail in this area would help those like me who aren't sure.

  2. guest · 1367 days ago

    I presume this threat is for Windows PCs. It would be appreciated if these articles could indicate to what extent these threats are a problem for Mac OS X or Linux/BSD users as well.

  3. wmlbrown · 1361 days ago

    That's because most Windows users are unaware there is anything else.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

Graham Cluley runs his own award-winning computer security blog at https://grahamcluley.com, and is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s. Now an independent security analyst, he regularly makes media appearances and gives computer security presentations. Follow him on Twitter at @gcluley