Media releases are provided as is by companies and have not been edited or checked for accuracy. Any queries should be directed to the company itself.

Symantec Threat Bulletin: New wave of phishing and malware attacks prey on social networking sites

Symantec has detected a new wave of phishing and malware attacks preying on social networking sites.
  • 05 November, 2009 15:28

<p>Symantec Threat Bulletin: New wave of phishing and malware attacks prey on social networking sites</p>
<p>Symantec’s Security Response Team has detected a new wave of phishing and malware attacks preying on social networking sites MySpace and Facebook users. Symantec believes that social networking sites with large numbers of users are currently being targeted to infect the maximum number machines or gather passwords for more malicious activities in the future. Symantec has discovered that the recently reported malicious spam campaign against Facebook is now being accompanied by a phishing attack.These fake phishing messages look like official Facebook emails, advising members of a new login system and asking them to update their account details. Users that click on the ‘update’ button are redirected to a look-alike Facebook phishing site, where they are asked to enter a password to complete the update procedure. Unfortunately this allows cybercriminals unlawful access to the password and login details and ultimately, access to the account.</p>
<p>These attacks can be identified by the following email subject lines:</p>
<p>Facebook account update</p>
<p>New login system</p>
<p>Facebook Update tool</p>
<p>Additionally, the Symantec Security Response Team has also detected a new wave of malware attacks on MySpace, which come as an email with an attachment. This attack also asks users to change their passwords, with the aim of gathering password details.</p>
<p>Email subject lines for these attacks include:</p>
<p>Myspace Password Reset Confirmation</p>
<p>Myspace office on fire</p>
<p>Myspace was ruined</p>
<p>Symantec encourages users to be extremely wary of any requests for personal information or suspicious attachments, especially those including a ‘password reset’ request. Legitimate websites will not request a password be reset by sending an attachment. Users should also be cautious when clicking on URLs without proper verification. To be safe and avoid a malware attack, URLs should be typed directly into the web browser. Finally, consumers should keep their security software up-to-date to prevent falling victim to these type of scams.</p>
<p>Please let me know if you would like to speak with a Symantec security expert about these attacks and what users can do to prevent themselves from falling victim to such scams.</p>
<p>Media Contact:</p>
<p>Jasmin Athwal</p>
<p>Max Australia</p>
<p>+61 2 9954 3492</p>
<p>Jasmin.Athwal@maxaustralia.com.au</p>

Most Popular

Most Popular Reviews

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Latest Articles

Resources

PCW Evaluation Team

Cate Bacon

Aruba Instant On AP11D

The strength of the Aruba Instant On AP11D is that the design and feature set support the modern, flexible, and mobile way of working.

Dr Prabigya Shiwakoti

Aruba Instant On AP11D

Aruba backs the AP11D up with a two-year warranty and 24/7 phone support.

Tom Pope

Dynabook Portégé X30L-G

Ultimately this laptop has achieved everything I would hope for in a laptop for work, while fitting that into a form factor and weight that is remarkable.

Tom Sellers

MSI P65

This smart laptop was enjoyable to use and great to work on – creating content was super simple.

Lolita Wang

MSI GT76

It really doesn’t get more “gaming laptop” than this.

Featured Content

Product Launch Showcase

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?