Phished Facebook Accounts Send Spam

Internet Facebook Facebook Tells What To Do If You Get Virus Message..
by CNET
Published: Thu, May 07, 2009 - 2:31 pm CST Last Updated: Thu, May 07, 2009 - 2:33 pm CST
(CNET) This story was written by CNET's Elinor Mills.

--------------------------------------------------------------------------------

Some Facebook accounts that were hijacked in phishing attacks last week were used to send out spam on Thursday that directed people to a Web site hosting malware, according to the social networking company.

Some Facebook users reported receiving messages that said "look at mygener.im" and contained a link that led to a site that appeared to be hosting adware, said Facebook spokesman Barry Schnitt. Adware is software that automatically displays or plays ads on a computer once it has been installed and can be used to spy on computers.

"We think it's adware," Schnitt said. "It doesn't appear to be self-propagating. We are still investigating."

The malware Web site was offline by late morning Pacific time and any messages on Facebook containing the link had been removed, he said.

The spam attack is believed to be the second stage of two related phishing attacks that happened last week. In those attacks, Facebook users received messages from friends urging them to "check this out" and including a link to "FBStarter" or "FBAction" Web pages. The pages appeared to be Facebook log-in pages, but were fake sites designed to steal usernames and passwords.

"It appears that the spammer has bided his time a little bit," Schnitt said in reference to the week between the spam attacks.

Facebook reset the passwords of members whose accounts were used to distribute the spam last week, but apparently the phishers were able to get control of at least one of the affected accounts before that could happen. Those hijacked accounts were then used to send the spam on Thursday.

People who received the latest spam and clicked on the link it contained should run an anti-virus scanner on their computers to make sure there is no malware on them, Schnitt said.

People who had clicked on the link in last week's phishing attacks should reset their passwords if they haven't already done so.
Email a Friend Email to a Friend   
Printer Friendly Printer Friendly
Translate: » Spanish | French | German | Italian | Japanese | Chinese | Russian | Hindi

Recently Commented On

WKRG Digital Signal Upgrade

3 Total Comments
WKRG Digital Signal Upgrade WKRG digital signal upgrades affect some reception for those… more »

Siran Stacy Sues Dothan 911…

6 Total Comments
Siran Stacy Sues Dothan 911 Board After Fatal Wreck Former University of Alabama football player Siran Stacy… more »

Baldwin School Closing A Possibility?

4 Total Comments
Baldwin School Closing A Possibility? Baldwin County Board of Education says more layoffs, school… more »

Deadly Ship Explosion

1 Total Comments
Deadly Ship Explosion One person is dead, another believed to be dead following… more »

Gulf Coast Classic Attendance:…

10 Total Comments
Gulf Coast Classic Attendance: 8,495 The city of Mobile put up more than $70,000 for the 2009… more »