Facebook Hit By Tag Video Posts that Lead to Malware
A malicious tagging campaign currently hitting Facebook is using the promise of raunchy videos to tempt users to click links.
Users see a Facebook post that appears to have tagged up to 20 of their friends. The post features a video teaser image, complete with a video 'Play' icon.
The 'video' images in the post vary in different incarnations of the scam, but may show scantily clad females or salacious scenes designed to entice people into clicking.
If you do click the image, you will first be taken to a webpage that examines what device you are using and redirects you according to the results.
If you are using a Windows computer, you will be automatically redirected to a fake Facebook Page that appears to host a YouTube video. But, a message on the fake Page will claim that you must update your Flash Player before you can see the video.
However, clicking the update link will download and install malware on your computer. Once installed, the malware will begin posting scam links on your Facebook Wall and will tag up to 20 of your friends as well, thus spreading the scam in your name.
A second piece of malware will download and install further malware components.
If you are using a smartphone, or other device not specifically targeted by the malware, you will instead be redirected to a scam page that tries to trick you into subscribing to an absurdly expensive SMS service.
Related versions of the scam messages may try to trick users into installing a malicious Chrome browser extension. The malicious extension can allow criminals to harvest information that goes through the infected browser, including usernames and passwords.
Facebook is reportedly aware of the attack and is taking steps to stop the message from spreading.
If you encounter one of the messages, do not click the image or any links it contains.
Identity theft is one of the fastest growing crimes in the world. Learn how to stay safe online with Hoax-Slayer's comprehensive eBook:
Last updated: February 2, 2015
First published: February 2, 2015
By Brett M. Christensen