«
»

[Security] Fake Facebook Password Reset Email Can Compromise Your Security

Bredolab botnet attack is the “active” spam / malware attack currently on. The scam makes use of fake Facebook password-reset messages to trick PC users into downloading a dangerous piece of malware by tricking them into believing it as a password.The executable sent as an attachment to the user is a malicious executable which is linked to the Bredolab botnet. Bredolab botnet has been linked to massive spam runs and identity-theft related attacks.

The malicious exe file connects to two servers to download additional malicious files and joins the Bredolab botnet which means the attackers have full control of the PC, such as steal customer information, send spam emails. One of the servers is in the Netherlands and the other one in Kazakhstan.

In this case, the sender email id is also spoofed as support@facebook.com .

Bredolab-botnet-attack-facebook

If you get any such email, remember, there is a Bredolab botnet attack going on.

Via Websense

You can follow me on Twitter at http://twitter.com/vaibhav1981

Do stay tuned to Technofriends for more, one of the best ways of doing so is by subscribing to our feeds. You can subscribe to Technofriends feed by clicking here.

Related posts:

  1. Facebook did have a Universal Password (sometime back)
  2. [Facebook] Now Reply to Comments by Email
  3. [How-To] Reset Windows NT/2k/XP/Vista Admin Password With Offline NT Password and Registry Editor
  4. [How-To] Upload Photos and Videos to your Facebook Profile by Email
  5. [How-To] Reset Mac OS X Password

This entry was posted on Friday, October 30th, 2009 at 3:15 pm and is filed under security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply