Security Alerts & News
by Tymoteusz A. Góral

History
#1045 Facebook malware: tag me if you can
On the morning of 26th June, news of a phishing campaign hit the Israeli media. Thousands of Facebook users complained that they had been infected by a virus through their accounts after they received a message from a Facebook friend claiming they had mentioned them in a comment.

Kaspersky Lab decided to investigate. We quickly discovered that the message had in fact been initiated by attackers and unleashed a two-stage attack on recipients. We also found that the attack was not confined to Israel, but was hitting targets worldwide.

The first stage of the attack started when the user clicked on the “mention”. A malicious file seized control of their browsers, terminating their legitimate browser session and replacing it with a malicious one that included a tab to the legitimate Facebook login page. This was designed to lure the victim back into the social network site.

Upon logging back into Facebook the victim’s session was hijacked in the background and a new file was downloaded. This represented the second stage of the attack, as embedded in this file was an account-takeover script that included a privacy-settings changer, account-data extractor and other tools that could be used for further malicious activity, such as spam, identity theft and generating fraudulent ‘likes’ and ‘shares’. Further, the malware infection loop began again as malicious notifications were sent to all the victim’s Facebook friends.
Read more
#1048 Foxit patches 12 vulnerabilities in PDF reader
#1047 YSTS X: The highlights of the COOLEST security conference in Brazil
#1046 Android Trojan malware makes hackers $500,000
#1045 Facebook malware: tag me if you can
#1044 Ransomware attacks may trigger breach notifications
#1043 OWASP Application Security Verification Standard 3.0.1 (PDF)
#1042 Dangerous keyboard app has more than 50 million downloads
#1041 Thirty percent of Android devices susceptible to 24 critical vulnerabilities
#1040 KSN Report: Mobile ransomware in 2014-2016
#1039 A massive financial crime and terrorism database has leaked
#1038 WiFi wave2 gets multi-gigabit, multi-user boost with upgrades to 802.11ac
#1037 Google's 'FASTER' 9000km, 60Tbps transpacific fiber optics cable completed
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12