Symantec: Don´t be too quick to reset your Facebook password

Spammers are once again turning their efforts to trusted social networking sites to lure in unsuspecting victims, and this time it´s Facebook.

Symantec Security Response has observed that spammers are attempting to use Facebook´s popularity to spread Trojan.Bredolab, a threat that has been consistently and widely distributed this year.  This trojan is capable of downloading password stealers, bots, rootkits, backdoors and misleading applications.

Spammers are misleading users by sending a false Facebook notification email about their password.  Along with the message is a .zip file that contains Trojan.Bredolab.

Kannan Velayutham, consultant for enterprise security, Malaysia, Symantec Corporation advises consumers to take into account the following considerations:

• Be careful what you click on. Exercise caution when clicking on links from unknown senders
• Remember never to respond to spam. A response will let the spammer know he has reached an active email address, and this just leads to even more spam. Likewise, clicking on links within a spam email that promises to remove you from the sender´s mailing list will again reaffirm the email address is active for the spammer. Delete suspicious email without reading it.
• Get multiple email addresses for multiple purposes. Have one email address specifically for personal use, known only to family, friends and colleagues. Another email address could be used for mailing lists and newsletters, and still another for online inquires and orders.
• Watch where you post your email address. To avoid being caught by bots collecting email addresses, don´t post your full email address on any publicly accessible Web page.
• Deploy protection. Ensure you are using an up-to-date security solution that protects against spam and viruses whilst still allowing legitimate email through.  Use security software and check out web safety services where a community of web users collaborate to report dangerous phishing and malware sites.

Source: Symantec media alert

Related posts:

1. Up for Sale! Over 1.5 Million Stolen Facebook IDs No, there are no spelling mistake and the title is...
2. Facebook loophole reveals names, pictures with sign-on errors It looks like there’s yet another little bug that compromises...
3. Free Panda Internet Security 2008 First come first serve!!!! Today is 5th September 2008. The...
4. Stay Safe From Phishing Attacks Hackers are always trying to trick you into revealing your...
5. Scam: Facebook Hacking An antivirus company recently discovered a website that claims to...