SOURCE: BitDefender

BitDefender

March 18, 2010 12:32 ET

BitDefender Warns of Trojan Spreading Scheme Targeted at Facebook® Users

A Deceptive Password Change Message Is Sent on Behalf of Facebook®

BUCHAREST, ROMANIA--(Marketwire - March 18, 2010) - BitDefender®, an award-winning provider of innovative anti-malware security solutions, today announced that a malware distribution campaign using Facebook® as bait began rolling out yesterday evening. Apparently legitimate e-mails notified Facebook® users that the passwords to their accounts have been changed due to security reasons. The recipients of this fake notification were supposed to open an attached .zip file in order to find out their new allocated password.

Instead of a new password, the zip file hides Trojan.Dropper.Oficla.G. As its name suggests -- Trojan Dropper -- is a piece of malware that contains malicious or potentially unwanted software which it 'drops' and installs on the system. Frequently, the dropper installs a backdoor which allows remote, clandestine access to the infected system. This backdoor may then be used by cybercriminals to upload and install additional malicious or potentially unwanted software on the system.

According to the BitDefender Monitoring Systems the distribution of the spam messages carrying this piece of malware started on the evening of March 17th, 2010. Since then, spam "waves" have reached significant proportions, in some cases more than 200 spam messages being sent out in 30 minutes.

Moreover, the infection rates reflected by the BitDefender Real-Time Virus Reporting System indicate the beginning of a massive spreading of Trojan.Dropper.Oficla.G. Although this phenomenon has just started, it seems that it's just a matter of (quite little) time before the cybercriminals control a huge number of systems.

Infection rates are expected to boom because the social engineering behind this mechanism proves to be efficient. Facebook® is a highly popular social network and accessing it for discussions or for its popular applications has become a daily habit for very many people. No matter why they access the social network, the e-mail informing them about the alleged password change is likely to drive them towards the same result: open the file to take a look inside and ultimately... get infected.

In order to stay safe, BitDefender recommends never opening the attachments coming from unknown contacts, as well as installing and updating a complete antimalware software solution.

To stay up-to-date on the latest e-threats, sign-up for BitDefender's RSS feeds here.

About BitDefender®
BitDefender is the creator of one of the industry's fastest and most effective lines of internationally certified security software. Since its inception in 2001, BitDefender has continued to raise the bar and set new standards in proactive threat prevention, emerging as the industry's anti-malware innovator. Every day, BitDefender protects tens of millions of home and corporate users across the globe -- giving them the peace of mind of knowing that their digital experiences will be secure. BitDefender solutions are distributed by a global network of value-added distribution and reseller partners in more than 100 countries worldwide. More information about BitDefender and its products are available at the company's security solutions press room. Additionally, BitDefender's www.malwarecity.com provides background and the latest updates on security threats helping users stay informed in the everyday battle against malware.

Contact Information