Emsisoft Warns: Zbot Trojan Spreads By Fake Facebook Friend Request

The malware analyst team of security expert Emsisoft has revealed that cyber criminals make use of the Facebook friend request to infect users with malicious software.

According to Emsisoft, fraudulent emails with the subject, “Kaamil Mahmoud wants to be friends on Facebook,” trick users by directing them to a fake website instead of the original Facebook website. When recipients of this message click “Confirm Friend Request,” they are taken to a fake Facebook page.

The fake Facebook page shows the message, “Your version of Macromedia Flash Player is too old to continue. Download and install the latest version of Adobe Flash Player”. By clicking on “Download and Install,” the browser will download a malware file named updateflash.exe containing the Zeus trojan.

Not executing the file does not necessarily mean escaping the infection. The page will also load another address in the background including an exploit script.

Emsisoft advises people to update their operation systems and applications regularly especially security programs. They also advise opening friend requests through the Facebook page manually versus through email.

You may also be interested in...

Red Hat’s David Egts: Open-Source Training, ‘Sense of Mission’ Could Help Agencies Address Cyber Skills Gap

David Egts, chief technologist for Red Hat’s North American public sector, has said there are several options …

HHS, Industry Aim to Help Health Organizations Mitigate Cyber Threats With New Publication

The Department of Health and Human Services has released a four-volume document that outlines 10 …

Cloud-Based Identity Tools, Mobile Device-Based Authentication Among Cyber Market Trends to Watch in 2019

Some of the trends in the cybersecurity market to watch in 2019 include the availability …