Bredolab Botnet Attack Via Fake Facebook Password Reset Notice
Facebook users are warned to be extra cautious when receiving a notification e-mail from the Facebook team informing the recipients that their password has been changed and requesting them to check their new password in an attached document. The attached document is a zip file containing a malicious .exe file and is detected as Trojan Bredolab by security expert, Symantec. This variant of Bredolab connects to a Russian domain and the infected machine is most likely to become part of a Bredolab botnet. The infected computer will be controlled by attackers. It can automatically download and install a variety of other threats. The attackers also can steal users’ information, send out spam emails, etc from the affected PC
.
Trojan.Bredolab is a threat that has been distributed widely and consistently this year. The fake Facebook password reset notice is another new trick for this Trojan to attack PC users particularly Facebook fans. Some Facebook users might check the address of the sender but they would be convinced when the sender is shown support@facebook.com as they might think this is an official and legitimate notice from Facebook.
Related Articles
- Facebook Under Attack by Koobface Virus
- Forgot Windows Administrator Password? Ways to Recover and Reset Password in Vista/XP/2003/2K/NT
- How to Reset AdSense Password Not Associated with Google Account
- Change and Reset MySQL root Password
- Remove or Reset Trend Micro OfficeScan Uninstall Password to Default
- How to Recover and Reset Gmail (Google Account) Password
- Reset the Root Password of MySQL Server
- How to Reset WordPress Password to Recover Forgotten Secret
- Reset and Change Windows NT/2000 Administrator or User Password with chntpw in Linux
- PCLoginNow (PC Login Now) Free Download to Reset Windows Admin or User Password
Entries (RSS)
October 31st, 2009 17:23
What does that mean? It can face email address, so how to check an email such that to know it face or not? Thank you!