Spammers are once again turning their efforts to trusted social networking sites to lure in unsuspecting victims, and this time it´s Facebook.

Symantec Security Response has observed that spammers are attempting to use Facebook´s popularity to spread Trojan.Bredolab, a threat that has been consistently and widely distributed this year.  This trojan is capable of downloading password stealers, bots, rootkits, backdoors and misleading applications.

Spammers are misleading users by sending a false Facebook notification email about their password.  Along with the message is a .zip file that contains Trojan.Bredolab.

Kannan Velayutham, consultant for enterprise security, Malaysia, Symantec Corporation advises consumers to take into account the following considerations:

• Be careful what you click on. Exercise caution when clicking on links from unknown senders
• Remember never to respond to spam. A response will let the spammer know he has reached an active email address, and this just leads to even more spam. Likewise, clicking on links within a spam email that promises to remove you from the sender´s mailing list will again reaffirm the email address is active for the spammer. Delete suspicious email without reading it.
• Get multiple email addresses for multiple purposes. Have one email address specifically for personal use, known only to family, friends and colleagues. Another email address could be used for mailing lists and newsletters, and still another for online inquires and orders.
• Watch where you post your email address. To avoid being caught by bots collecting email addresses, don´t post your full email address on any publicly accessible Web page.
• Deploy protection. Ensure you are using an up-to-date security solution that protects against spam and viruses whilst still allowing legitimate email through.  Use security software and check out web safety services where a community of web users collaborate to report dangerous phishing and malware sites.

Source: Symantec media alert

Related posts:

1. Scam: Facebook Hacking An antivirus company recently discovered a website that claims to...
2. Alert: W32 Koobface Worm now on Twitter I recently discovered a worm called W32 Koobface that was...
3. Alert: W32 Koobface Worm now on Twitter I recently discovered a worm called W32 Koobface that was...
4. Fixing the Facebook Badge Error Is your Facebook badge not displaying correctly or not...
5. DDoS on Twitter, slower access to Facebook How does it feel a day without Twitter and Facebook?...