12345

2/09/2011

Malicious files are spreading through Facebook.

1. Introduction

Since spreading cases of malicious file have been reported in these days, general Facebook users need to be careful from avoiding these malicious files.
Recently found spreading technique is similar as before. And this type of technique will be a trend for a while.

2. Spreading path and symptoms of infection

This malicious file can be spread via URL on Facebook. And it also can be spread on attachment of e-mail, link on mail body, or SNS. On accessing the malicious address, you can see the following window.


You will be induced to download with 2 ways on that web page.
One is clicking "View Photo", another is clicking alarm window for download in upper.

Both ways are for downloading and you can see the following window on download.


On clicking "View Photo" can block execution because of digital signature problem.


Following icon is downloaded malicious file.


It can induce user with using its name including "photo".

Damage cases haven't been reported so far, however, users have to avoid from additional spreading that malicious file.

3. How to prevent

General user can't easily figure out the real address.
To use PC safely from security threats of these malicious attachments, we recommend following "Security management tips" for general users.

Security management tips

1. Maintain the latest security update on OS and applications
2. Use anti-virus SW from believable security company and keep updating the latest engine and using real time detecting function
3. Do not see and download attached file from suspicious e-mail.
4. Keep caution to link from instant messenger and SNS.

INCA Internet (Security Response Center / Emergency Response Team) provides diagnosis/treatment function with nProtect Anti-Virus/Spyware for detecting such as malicious file stated above and runs responding system against various security threats.

No comments:

Post a Comment