Tens of thousands of Facebook accounts compromised in days by malware

by
Dan Goodin
from Ars Technica - All content on (#3N2A6)
Screenshot-43-1.png

Facebook's guidelines visually sum up "offensive things" with this blue text balloon. Meaning, it doesn't resemble a "fully exposed buttock."

Criminals have compromised tens of thousands of Facebook accounts in the past few days using malware that masquerades as a paint program for relieving stress.

"Relieve Stress Paint" is available through a domain that uses Unicode representation to show up as aol.net on search engines and in emails, researchers from security firm Radware said in a post published Wednesday morning. (This query showed the trojan was also available on a domain that was designed to appear as picc.com.) The researchers suspect the malware is being promoted in spam emails.

spoofed-websites-640x326.png

Once installed, the malware acts as a legitimate paint program that changes colors and line size with each user click. Behind the scenes, it copies Chrome data that stores cookies and any saved passwords for previously accessed Facebook accounts.

Read 9 remaining paragraphs | Comments

index?i=D4J-tUzQRMI:MQMEeDBpW9A:V_sGLiPB index?i=D4J-tUzQRMI:MQMEeDBpW9A:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments