Skip to main content

A new Facebook virus has already infected 800,000 users – here’s what you need to know

There’s a new password-swiping virus spreading on Facebook, and once again the malware preys on the social trust accrued by the network.

Over 800,000 people have already been affected by the virus, which looks like a video sent by a friend. Once someone clicks on it, they are routed to a website that tells them they need to download a plug-in to watch the video.

Recommended Videos

And if they download the plug-in is when trouble starts. The download gives the malware creators access to a user’s password, often for email as well as Facebook and Twitter. This gives the attacker the ability to pretend to be their victim, potentially wringing more personal information out of their accounts. This is how the virus spreads; since the attackers have access to the infected accounts, they use those handles to reach out to other victims, spreading the video.

Carlo de Micheli, one of the researchers, told the New York Times that instances of the attacks were growing rapidly, with 40,000 new cases an hour.

Google responded by disabling browser extensions that allowed the attack, which may seriously impede future growth. But while the attackers were primarily using the Google Chrome browser, De Michelli said that the attackers were adapting their malware program to get around defensive measures, and that they had already adapted it for Mozilla Firefox.

This latest attack is troubling because it shows a substantially more sophisticated understanding of how to take advantage of Facebook to spread spam than other attacks. Because this type of attack, where the user is prompted to download a plug-in, is not very well-known, even users who are generally savvy about viruses can get duped. This isn’t your typical weight loss link popping up, supposedly recommended by your friend. This looks like it’s a message directly to you.

As malware attackers continue to innovate ways to get at your personal information, it’s important to assume that anything sent to you may be spam. Look for signs that an email or Facebook message is actually addressed to you – for instance, if you got this newest virus sent to you, it wouldn’t be a personalized message, but just a link from your friend. Do your friends often send you links without any comments? If so, tell them next time to put a little personal remark next to the link so you know it’s not a virus. Facebook, Chrome, and Firefox need to take safety precautions to avoid this kind of thing happening, but users also need to stay smart about what they open and what they download.

Kate Knibbs
Former Contributor
Kate Knibbs is a writer from Chicago. She is very happy that her borderline-unhealthy Internet habits are rewarded with a…
Bluesky finally adds a feature many had been waiting for
A blue sky with clouds.

Bluesky has been making a lot of progress in recent months by simplifying the process to sign up while at the same time rolling out a steady stream of new features.

As part of those continuing efforts, the social media app has just announced that users can now send direct messages (DMs).

Read more
Reddit just achieved something for the first time in its 20-year history
The Reddit logo.

Reddit’s on a roll. The social media platform has just turned a profit for the first time in its 20-year history, and now boasts a record 97.2 million daily active users, marking a year-over-year increase of 47%. A few times during the quarter, the figure topped 100 million, which Reddit CEO and co-founder Steve Huffman said in a letter to shareholders had been a “long-standing milestone” for the site.

The company, which went public in March, announced the news in its third-quarter earnings results on Tuesday.

Read more
Worried about the TikTok ban? This is how it might look on your phone
TikTok splash screen on an Android phone.

The US Supreme Court has decided to uphold a law that would see TikTok banned in the country on January 19. Now, the platform has issued an official statement, confirming that it will indeed shut down unless it gets some emergency relief from the outgoing president.

“Unless the Biden Administration immediately provides a definitive statement to satisfy the most critical service providers assuring non-enforcement, unfortunately TikTok will be forced to go dark on January 19,” said the company soon after the court’s verdict.
So, what does going dark mean?
So, far, there is no official statement on what exactly TikTok means by “going dark.” There is a lot of speculation out there on how exactly the app or website will look once TikTok shutters in the US.

Read more