Worm Burrows into Social Networking Web Sites

By Matthew Harwood

A worm preying on Facebook accounts in December is back with a revenge, reports. But this time, it's burrowing into other social networking Web sites, including Myspace, Friendster, LiveJournal and others.

The Koobface worm is again making the rounds on Facebook, said Jamz Yaneza, a research project manager with Trend Micro Inc. "But this is an improved version with some interesting functions," he said.

Like the variant that hit Facebook late last year , the newest Koobface tries to dupe users into clicking on a link that's included in a message from a friend. Clicking on the link displays a fake error message claiming that Adobe System Inc.'s Flash is out of date, and prompts the user to download an update.

The update is nothing of the sort, but is instead an executable file that installs the Koobface worm.

The Koobface worm then roots through the compromised computer, sniffing out cookies associated with ten social networking sites, stealing their logins, and then sending the malicious link to that site's users' friends.  Trend Micro advises anyone receiving suspicious messages with links not to click on them.

Times have been tough for Facebook lately. Last week, according to PCWorld, security researchers discovered another scam perpetrated on Facebook users.

The most recent [scam] sent messages to users claiming that friends had turned them in for violating Facebook's terms of service; when people clicked on the included link, they downloaded an application that spammed all friends with a similar message and may have harvested information from each Facebook account as it did so.

Facebook is fighting back, reports Scientific American, by launching an application verification program that awards a verification badge graphic to safe applications. The program, however, is optional.


View Recent News (by day)


Beyond Print

SM Online

See all the latest links and resources that supplement the current issue of Security Management magazine.