By now, we are all familiar with Facebook scams that claim to give your Newsfeed a designer look. Remember Facebook Red or Facebook Black? Those pretty themes ended up spreading spam and malicious links via online surveys and fake videos. Today, the AVAST Virus Lab experts discovered a unique variety– the Facebook Music Theme Scam.
The Facebook Music Theme Scam is supposed to change the theme and add a song to your Facebook page. But when our Virus Lab expert, Honza Zika, investigated, he got more than danceable music tracks, “What this code does is modify Facebook. It automatically liked 32 photos, people, groups, … See my activity log, that is just half of it.”
Yes! What a lucky day! I’ve just got a message that I won 2,000,000.00 British Pounds (2.4M EUR/3.1M USD), an Apple laptop, a T-shirt, and a cap emblazoned with a logo of The Free Lotto Company. Pretty awesome you might think, but appearances are deceptive. Unfortunately, this is just one of the ways bad guys try to get some of our money.
Well, I was thinking, it‘s worth a shot. So I decided to write to the email address and see what would happen. Actually, the hardest part was a making up a fake name for myself! You would never believe how rough this might be. In the end, I decided to call myself Robert Konmed.
Here’s how the conversation went down.
Me: Hello, I’ve got a winning message with information to contact your email address. How can I pick up my prize please? Thank you, Robert Konmed
Bad guys: Please find attached document for info to contact courier delivery company: EMAIL:email@example.com Regards Brian Calton
Me: Hello guys, I’m really excited about a winning prize. But would be possible to tell me how much I should prepare for a delivery company? And also I’m curious if there is possibility to charge delivery from my winning prize? Thank you & have a nice day! Best regards! Robert Konmed Read more…
Millions of people use social networks like Facebook and Twitter every day to share photos, comments, and ideas with their friends and followers. These popular platforms have become magnets for cybercrooks and are used to spread different types of scams. Hackers take advantage of the easy accessibility of data we put online to manipulate or steal them.
The security of AVAST users is a total priority for us. Therefore we monitor and warn you about new threats we discover on social media. We have noticed that while trying to be creative, scammers also run out of ideas and certain type of threats repeat periodically. Hence, we have gathered the top 4 sneakiest scams and prepared a summary of the most typical malicious behavior recently distributed via social networks.
Facebook Photo Scams
Most of us are softies and scammers know it. Who wouldn’t “like” a photo of a child in need if it could help them? Especially if it says: Each time you like the photo, you donate one cent to…, or If I collect 1,000,000 likes my parents will… Like my photo, please! Scammers count on our sympathetic hearts to respond to these calls for help, and we do by clicking like and share. Read more…
Summertime means vacation time, and many of us brag share our plans on social networking sites like Facebook and Twitter. A recent survey by MoneyGram found that nearly one-third of consumers aged 18-49 post details about their vacations on social media before or during their trip, essentially broadcasting to the world when they will be away, where they are going, and what they will do – and more than just friends are watching.
“Sharing summer travel plans can serve as an invitation for criminals to target family members with the relative in need scam,” warns MoneyGram, a leading global money transfer company. In the so-called “family scam,” cybercrooks target elderly family and friends of people traveling on vacation with frantic late-night phone calls or emails from a hijacked account. They make up an emergency situation and instruct the victims to wire huge sums of money to “rescue” their relatives from nonexistent predicaments. Some AVAST users have experienced this firsthand.
According to MoneyGram, victims of family scams lost an average of $1,551 each time money was sent to a scammer – with a total of more than $8.5 million in attempted transactions during summer 2012.
“When families go on vacation, they don’t do their relatives any favors when they post Facebook pictures and tell everyone how long they’ll be gone,” said Barbara Fore, an elder-related-crimes investigator for the Seminole County Sheriff’s Office in an Orlando Sentinel article. “Criminals are monitoring things like Facebook all the time, and they can often find out just about everything they need to know to run their cons.”
MoneyGram advises that “the safest way to respond to a frantic phone call is to simply hang up and call your relative directly to verify the situation, or verify the identity of the person on the other end of the line or email by asking questions with answers that only true friends or family members would know. These steps often reveal the attempted fraud, preventing any further emotional distress or monetary losses.”
Several months ago I wrote a blog post about an adware downloader which after execution downloaded a few adware programs and installed them on the computer, giving no chance for the user to skip or bypass their installation. This time, we will analyze an application, which installs similar types of adware programs on user computers.
We received a file which appeared to be a crack of Pinnacle Studio HD Ultimate. After displaying the initial splash screen, it offers the user to install Pinnacle Pixie Activation 500. After confirmation, the crack is installed, but in addition to the crack, other programs and toolbars unexpectedly appeared on the compromised computer. Pinnacle was not the only target of this kind of attack. Cracks for programs like Sims, Nero, Rosetta Stone, and Pro Evolution Soccer 2013 were also used in distribution.
I don’t know what kind of curiosity leads people to the dark corners of the internet, when they want to obtain a new version of antivirus software. It’s somehow irrational to find security software at insecure places. But…. it happens.
As you can see, the file name is Avast_Antivirus_2012_Trial_Verion.exe – but it is definitely not a proper setup released by us. Here are some facts, that are worth remembering:
The phishing scam creators are really getting creative. Of course one could question their targeting such in this case. Czech republic is known for our quite lenient view of laws and rules and – especially – the need to pay (or the lack of there off) of any fines especially when imposed by so called municipal police. Who would bother… Hence, an email urging to pay a fine is normally filed directly into the ‘round file’. Known as trash. Well in this case… there actually might be a good reason to look at this closely Read more…
Have you received an email saying a friend tagged you in a photo on Facebook? Use extreme caution before clicking to see photos in the attachment. In a typical phish, cybercrooks are using a fake Facebook photo notification email designed to spread malware allowing them to gain control over Windows-based computers.
Avast Virus Lab detected the malware as Win32:Trojan-gen and added the definition to the database yesterday, so all avast! users are protected.
The email looks innocent enough with the familiar blue header and logo. Serious Facebookers may know that Facebook never sends you photos that you’ve been tagged in as attachments; rather they send links to the photos. Unfortunately, most of us are too busy to notice the difference.
Please share this warning with your Facebook friends, and recommend that they get avast! Free Antivirus, so they’ll always be protected. You can share avast! by clicking on our recommend avast! app here.