New multi platform malware spreading by way of Fb Messenger

Posted on Aug 25 2017 - 7:13pm by TekGuru
Should you or anybody you understand has acquired  any Fb message with a video hyperlink despatched by anybody, don’t click on on it. Kaspersky Lab have discovered what appears to be an ongoing cross-platform marketing campaign on Fb Messenger, the place customers obtain a video hyperlink that redirects them to a faux web site, after which they attempt to lure the sufferer to put in malicious software program.


Though it’s nonetheless unknown on precisely how the malware spreads, researchers consider that the spammers are utilizing compromised accounts, hijacked browsers, or clickjacking methods to unfold the malicious hyperlink.

Hackers use of social engineering to trick customers into clicking the video hyperlink, which appears to be like like it’s  from one in every of  your Fb pals, with the message that reads “< your pal title > Video” adopted by a hyperlink, as proven.

Here is How this Malware Works:

For Firefox the URL redirects victims to a Google doc that shows a dynamically generated video thumbnail, like a playable film, based mostly on the sender’s photographs, which if clicked, additional redirects customers to a different custom-made touchdown web page relying upon their browser and working system.


For Google Chrome customers are redirected to an internet site that masquerades as YouTube clone with comparable YouTube brand, which shows a faux error message popup, tricking victims into downloading a malicious Chrome extension from the Google Net Retailer.


The extension really is a downloader that downloads a file of attacker’s option to the sufferer’s laptop.

“On the time of writing, the file which ought to have been downloaded was not accessible,” David Jacoby, a chief safety researcher from Kaspersky Lab, writes of their blog.

Folks utilizing Mac OS X Safari find yourself on an online web page much like when utilizing Firefox, nevertheless it was customised for OS X customers, with a faux replace for Flash Media Participant. Which if when clicked on it then, downloads a .dmg file, which can be adware.

Similar in case of Linux, consumer redirects to a different touchdown web page designed for Linux customers.

The attackers behind the marketing campaign usually are not really infecting customers of all platform with any banking Trojan or exploit kits, however with adware to make some huge cash by producing income from adverts.

The easiest way to maintain your self protected, is to to not click on on  photographs or video hyperlinks despatched by anybody, even your pal, with out verifying it with them.

About the Author

I love anything that is tech related, gaming, science, movies ect. I am the owner and founder of AllThatTek.

Leave A Response