Microsoft has warned of a “wave” of malicious browser extension Trojans that are trying to hijack Facebook accounts.
After first discovering the threat in Brazil, Microsoft found the malware was targeting targeting Chrome and Mozilla Firefox.
“To begin with, this Trojan monitors a user to see if they are currently logged-in to Facebook. It then attempts to get a configuration file from the website <removed>.info/sqlvarbr.php. The file includes a list of commands of what the browser extension will do,” Microsoft noted in a blog post.
The malware can do plenty of things on people’s Facebook accounts, including sharing links, issuing posts, liking pages and chatting to friends.
It has been busy posting typical social engineering fodder, including a post in Portuguese that translates to: “15 YEAR-OLD VICTIM OF BULLYING COMMITS SUICIDE AFTER SHOWING HER BREASTS ON FACEBOOK.”
The malware also ‘likes’ a particular Facebook page, hinting at a multi-faceted campaign, possibly involving click fraud.
“There may be more to this threat because it can change its messages, URLs, Facebook pages and other activity at any time. In any case, we recommend you always keep your security products updated with the latest definitions to help avoid infection,” Microsoft added.
Are you a security expert? Try our quiz!
Suspended prison sentence for Craig Wright for “flagrant breach” of court order, after his false…
Cash-strapped south American country agrees to sell or discontinue its national Bitcoin wallet after signing…
Google's change will allow advertisers to track customers' digital “fingerprints”, but UK data protection watchdog…
Welcome to Silicon In Focus Podcast: Tech in 2025! Join Steven Webb, UK Chief Technology…
European Commission publishes preliminary instructions to Apple on how to open up iOS to rivals,…
San Francisco jury finds Nima Momeni guilty of second-degree murder of Cash App founder Bob…
