GREAT ESCAPE
Everyone's been eager to sign up Facebook even in hand phones except me. Why didn't I sign up? To me it is just another Friendster type. From the article below where I read from the net, pops up in Facebook linking to worm. How bad is that? Read the definition for worms below:
Definition for Worms:
A computer worm is a self-contained (can run by itself) program (or set of programs) that is able to spread functional copies of itself or its segments to other computer systems (usually via network connections). Worms are different from virus because they do not need to attach themselves to a host program in order to work. Examples of famous worms are the Internet worm, Christmas Tree worm and nowadays, Brontok.
Is it a threat to you? It is to me. And also beware when surfing billboard.com. There is also a threat.
Dodgy Facebook Messages Link To Worms
If a dodgy message from a friend pops up in Facebook, chances are that it's a link to a nasty worm. Discovered by the FortiGuard Global Security Research Team, the worm itself doesn't reside in Facebook or any of it's applications. Using the old "click here" hoax, users who click through the links in the said dodgy message will be directed to a Google Reader page. Once there, Google Reader will ask you to download a "codec" in order to view the contents of the page - but surprise, surprise - the "codec" that you're downloading is in actual fact, a worm!
MALAYSIA, 30 October 2008 – Fortinet - the pioneer and leading provider of unified threat management (UTM) solutions - today announced that its FortiGuard Global Security Research Team discovered a Facebook worm that is trying to leverage Google Reader to gain trust in visitors with an intention to download a malicious codec onto their machines.
Since end of July 2008, worms targeting Facebook users have been spotted here and there. The strategy has been simple, yet effective: A malicious message is sent to friends of the infected user, prompting them to visit a page carrying an online video - something utterly common in today's Web 2.0 era. However, should the targeted users follow the link, they would soon find out the video does not start.... unless they install a special codec, as prompted for by the page! As a matter of course, the said codec is nothing else than a Trojan, loading various malware pieces, possibly including a copy of the worm.
Since end of July 2008, worms targeting Facebook users have been spotted here and there. The strategy has been simple, yet effective: A malicious message is sent to friends of the infected user, prompting them to visit a page carrying an online video - something utterly common in today's Web 2.0 era. However, should the targeted users follow the link, they would soon find out the video does not start.... unless they install a special codec, as prompted for by the page! As a matter of course, the said codec is nothing else than a Trojan, loading various malware pieces, possibly including a copy of the worm.
Fortinet customers who subscribe to Fortinet’s antivirus and Web content filtering services should be protected against this threat. Fortinet’s IPS service is one component of FortiGuard Subscription Services, which also offer comprehensive solutions such as antivirus, Web content filtering and antispam capabilities. These services enable protection against threats on both application and network layers. FortiGuard Services are continuously updated by the FortiGuard Global Security Research Team, which enables Fortinet to deliver a combination of multi-layered security intelligence and true zero-day protection from new and emerging threats. These updates are delivered to all FortiGate, FortiMail and FortiClient products. Fortinet strictly follows responsible disclosure guidelines to ensure optimum protection during a threat's lifecycle.
