|
Post by Liberator on Oct 27, 2009 16:02:12 GMT
Has anyone had a zipped virus attachment doing the rounds purporting to be a new password from Facebook? I don't recall ever signing up to that abomination but it's always possible that in a moment of madness I might have done to see something that was otherwise unattainable. Once possibly, even twice but not three times and each addressed by my e-address, not by any name.
Yes, according to ClamAV Suspect.Bredozip-zippwd-3, wheras Ark tells me that what is actually in there goes by the name of Facebook Password 27bfx.exe - which looks like a virus to me so safe enough since .exe won't run under Linux. ClaAV details online say it's a Trojan downloader.
So be ye warned, all Facebookers!
|
|
|
Post by motorist on Oct 27, 2009 17:32:54 GMT
Anybody caught by this is a peanut brain anyway. I never click links I don't expect
I've had 3 messages of this kind. The first two said "did you really do this?" with a link, sent by "J. Kevin Lally". The 3rd one was from someone named Aaron Angst today and waffled about password and using the security help... with a link
|
|
|
Post by Liberator on Oct 27, 2009 20:45:08 GMT
If you do belong to Facebook it is conceivable that you might believe they had reset the password although it is very unusual not to be named in any message from an authentic site. Somebody says she read a small newspaper piece about it that sounded rather unsure whether it was a spoof or Facebook had been hacked. I've had information requests purporting to be from Paypal and the usual ones supposedly from banks. Last week I got a phone one about my credit card outside banking hours. That does the rounds every three or four months. Anybody who blindly sets an automatic extraction going for something unsolicited deserves what they get but a lot do. Half of them probably wouldn't understand downloading and extracting anything by hand if you showed them. I shy away from anything in a zip file anyway as it's not the usual compression format for anything I would normally want.
|
|
|
Post by beth on Oct 27, 2009 21:05:45 GMT
oh well, I can think of a couple of people I know who would happily open it up with no thought of anything negative. Better shoot them an email. Thanks for the info.
|
|
|
Post by beez0811 on Oct 27, 2009 22:21:55 GMT
If you reset your password on Facebook, it sure as heck doesn't involve opening any zipped attachments.
|
|
|
Post by Liberator on Oct 27, 2009 23:27:48 GMT
If they had had some sort of a crash they might conceivably send round to all customers but of course there would be no need to zip it or attach it. I've never had a replacement password sent as anything other than part of the email and that is the securest way to do it. But when you think of the huge majority of Facebook members they are just the sort of kids who would take it for granted to open the thing automatically during the download and not even notice if something else came in and started doing weird things. I've been caught twice, by very plausible malware that in the one case actually is an anti-virus but keeps identifying itself until you buy the full version, and in the other by one that usually identifies that you need new Flash or Youtube plug-ins or codecs to view something. Both of them are absolute buggers that normal anti-virus won't remove because they are clever enough to be almost what they say they are - and invite you to load them. Once before, I had an NT system that I'd decided not to switch off overnight so it could load all the mail taken over between 2 and 4 am to remail spam and nothing showed up. The first we knew was a loads of 'address not found' returning mail we were never supposed to have sent and then a wacking great phone bill for sending it, so it proved that it hadn't been a case of spoofing our address. Ye gods it's still there! www.cmn.ie/ As far as I know, the actual organisation has been closed down since before that page went up.
|
|