1. Computing

First truly successful Facebook Messenger malware bot has been identified

Justin Pot
By

facebook messenger virus malware windows chrome facebookcomp head
It has been reported that 10,000 Facebook users were tricked into installing malware this week, an infection that spread quickly by mimicking Facebook’s notifications feature inside Facebook Messenger. It just might be the most successful malware bot on Facebook’s Messenger platform yet.

Victims received a message “from a friend,” which stated that the friend mentioned them on Facebook. Clicking the link didn’t take users to a Facebook post, however, but instead installing a trojan complete with a Chrome extension that automatically hijacked the victim’s Facebook account. From there, the malware spread to more users.

“A successful attack gave the threat actor the ability to change privacy settings, extract data, and more, allowing it to spread the infection through the victim’s Facebook friends or undertake other malicious activity such as spam, identity theft, and generating fraudulent ‘likes’ and ‘shares,’” said a Kaspersky release on the malware. The malware would also blacklist the URLs for anti-virus software, making it harder to remove.

It seems as though only Windows desktop users were vulnerable to the infection, Kaspersky is reporting, though it’s possible the malware could spread on Windows phones. Android and iOS are immune. Infections occurred mostly in Brazil, Poland, Peru, Colombia, Mexico, Ecuador, Greece, Portugal, Tunisia, Venezuela, Germany, and Israel, according to Kaspersky.

“Two aspects of this attack stand out,” said Ido Naor, senior Security researcher at Kaspersky Lab. “Firstly, the delivery of the malware was extremely efficient, reaching thousands of users in only 48 hours. Secondly, the response from consumers and the media was almost as fast. Their reaction raised awareness of the campaign and drove prompt action and investigation by the providers concerned.”

Facebook has taken steps to slow the malware’s spread, and Google has removed the offending Chrome extension from the Chrome Web Store. So the malware should be slowed, for now, but if you’re worried about your computer be sure to run a malware scan today.

Editors' Recommendations

Google’s Pixel 6 issues are causing a crisis of trust

Google Pixel 6 Pro in hand.

Whatsapp iOS beta brings update for message reactions

Whatsapp logo with emojis. Credits: WhatsApp official.

How to use AirDrop on a Mac

how to use airplay mac airdrop feature

Firefox Focus unveils ‘total cookie protection’ for Android

Mozilla Firefox image. Credits: Mozilla official.

With Tesla bleeding money, Elon Musk initiates hardcore spending review

Tesla Model Y front

How much does Netflix cost? A breakdown of the streamer’s plans

Screenshot of the Netflix menu.

The most anticipated laptops of 2022: XPS, MacBook, and more

Aasus Zenbook 17 Fold folded in half.

In Project Zomboid, every brutal death is a learning experience

i love my characters brutal stories in project zomboid featured

The best smart wallets for 2022

Man putting smart wallet in his pocket.

James Webb begins careful, slow process of aligning mirrors

James Webb Space Telescope illustration.

The best Roku TVs 2022: Which should you buy?

Woman looking away from a Roku TV screen.

‘Exploring fitness’ won’t get Google TV anywhere near Apple Fitness+

The Google TV remote in front of Apple TV Fitness.

5G’s big players make bold, exciting predictions for 2022

5G mobile network