With malicious file trends these days, various spreading cases through Facebook have been reported on Feb 10, 2011.
This issue can be a big source of social engineering technique to spread malicious file.
2. Spreading path and symptoms of infection
Recently reported malicious application can be spread via Facebook's wall.
As you see the figure above, you can find that the inserted link is a type of converted address.
Since convert address can be hardly known before clicking, general user can be easily induced to malicious web site.
If a Facebook user infected by this malicious Facebook application, it will ask the permission on writing wall.
Allowing the permission will post on your wall and recommend friends to accept this malicious application.
Upon infected, following application will be run.
Usually, this kind of malicious application for Facebook aims at collecting user information and advertisement.
3. How to prevent
In case of this malicious files spreading through SNS or twitter, it tries to get permission on writing wall and re-distribute for its advertisement.
Because collected information is used for spreading malicious file, being confused and infected on general users is the biggest feature of this application.
To use PC safely from security threats of these malicious attachments, we recommend following "Security management tips" for general users.
INCA Internet (Security Response Center / Emergency Response Team) provides diagnosis/treatment function with nProtect Anti-Virus/Spyware for detecting such as malicious file stated above and runs responding system against various security threats.