Saturday, December 4, 2010

Facebook Scam: "Guy accidentally Fires His Mom With AK47!"

The Scam
"OMG! This Idiot guy accidentally Fires His Mom With AK47! You must see this:" http://apps.facebook.com/akvideoz/

This scam purports to show some guy "frying" his mom with an AK-47. Sadly to say what's at the end of this rainbow is nothing more than an average Facebook scam.

Do not be surprised if you see one of your friends post a message similar to the one below. See example

Example Post

Clicking on the link within this message will transfer you to the application drop you see below. See example

Application Drop Page

At this point you should stop, because as we have seen in the past, when you're brought to a page such as this and not presented with the supposed video or information that the previous post said you would be, you're going to have to jump through some nasty little hoops. If you make the mistake of clicking anywhere within this page you will be taking to an application request for permission page like the one below. See example

Request for Permission Page

As we can see on the above request for permission prompt, your being asked to give an application name AK47video access to quite a bit of your profile. The permissions include: The ability to send you an e-mail, to post to your wall, to access your data at any time, which basically means even when you're not logged in to Facebook, and you're asked to allow the application to manage your page. Now for folks that don't know what manage my pages means, it basically means that this application will be able to post to any facebook fan page you admin. This application requests all of these permissions because it plans to use them in the next step of the process. It's going to post it's spamming messages to your personal wall so your friends can see it and then it's going to post to any pages you admin. See example

Example Spam Post

While the application is busy making post to your wall without your knowledge, you are transferred to the next page, where you are prompted to click to see the video. See example

Fake Video Page

If you have jumped through all the hoops up to this point, I guess you're going to go further by clicking on the video. Once you've clicked on the "watch the full video" button on this page, you will be redirected to a site called toxic junction, where you will be prompted to make a vote on whether legalizing firearms will make society safer. You will also be shown video of some idiot appearing to play with an AK-47 in his room and accidentally firing it. No he doesn't fry his mother.

Example Site

It's a scam, Don't fall for.

Scam App Info:
Ak47Video
http://www.facebook.com/apps/application.php?id=146092012107715
Block Application Link
Damage Control


Facebook Clean Up
You need to be aware that if you have installed any bad apps into your facebook profile or clicked any clickjacked or likejacked links within facebook, you may be currently spamming your wall and or your friends news feeds with the apps or links viral/scam messages. If this has occurred you must remove the messages from your wall by deleting the post and or remove the rogue app by uninstalling it from your facebook profile.

How to remove an Application from your profile:
If you have made the mistake of following thru with the install of a rogue application, Please do the following:
  1. Navigate to your Privacy settings- (Click Account, then "Privacy Settings").
  2. Then under the heading "Applications, Games, and Websites" click "Edit Settings".
  3. To the right of the heading "Applications You Use" Click the "Edit Settings" button.
  4. Finally find the application name in your list and click the "Little X" to the right of that name. Follow the facebook prompt to remove the app.
What to do if you've downloaded Software to your Computer
If you have followed one of the links on facebook to an external website or downloaded a piece of software you are unsure of and believe you may have gotten a virus infection, I suggest you immediately uninstall any software you may have installed, then run a virus check on your system. If you don't have a Virus Scanner on your system, here is a list of FREE ONLINE VIRUS SCANNERS. ( I suggest you check your system with at least 2 of these ):

Online Virus Scanners:
The sites below will run a virus scan on your computer.

Symantec Security Check
Onecare Safety Scanner
Kaspersky Online Scanner
ActiveScan 2.0 - PANDA SECURITY
BitDefender Online Scanner
CA Online Threat Scanner
Posted by at No comments:
Labels:

Friday, December 3, 2010

Updated - Twitter Twicks For The Holidays



Cybercriminals are at it again. This time exploiting Twitter to spread malware using holiday themed tweets, as stated by to PandaLabs researchers. Using methods similar to black hat SEO techniques, these scammers are taking advantage of trending topics to position malware distribution campaigns.

As the holiday period has begun, topics such as the ones listed below are among the most popular subjects used by hackers to trick users.

  • Grinch
  • Hanukkah
  • Advent calendar

Tweets have been launched using holiday-related phrases, such as:

  • "Nobody cares about Hanukkah" 
  • "Shocking video of the Grinch" 


These type of tweets will always be accompanied by a shorten URL which points to a malicious website.

"Click for full view"


Users who make the mistake of clicking the links will be transported to web pages that are designed to exploit a PDF vulnerability. The malicious page then also tries to trick users into downloading a codec that is really a downloader Trojan. If the user downloads the fake codec they will be prompted to, it in turn, downloads more malware onto the compromised system.

"Click for full view"


In addition to subjects related to Christmas, cyber-criminals are using other main stream topics to spread their creations via twitter. These included:

  • The Carling cup
  • AIDS Awareness
  • Morgan Freeman
  • Sundance
  • Gruden


PandaLabs Security Tips
Because there is an increased risk of Cybercriminals activity over the holiday period, PandaLabs is offering users a series of practical security tips for using social media:
  • Don't click suspicious links from non-trusted sources. This should apply to messages received through Twitter, through other social networks and even via email.
  • If you click on the links, check the target page. If you don't recognize it, close your browser.
  • Even if you don't see anything strange in the target page, but you are asked to download something, don't accept.
  • Install all available operating system updates and patches. Cyber-criminals are particularly skilled at exploiting critical vulnerabilities in operating systems and commonly used applications. Computer users are often silently redirected to a website with a carefully crafted malicious payload that leaves the computer infected with data-stealing malware or extortion-based threats. In addition to updating your system, you should update Adobe Flash, Adobe Reader and Java software, which are all commonly targeted by cybercriminals.
  • If you do download or install an executable file and the PC starts to launch messages or behaves strangely, there is probably malware on your computer. In this case, you should check your computer with a free online scanner.
  • As a general rule, make sure your computer is well protected to ensure that you are not exposed to the risk of infection from any malicious code.

Update - 12-07-2010

Via Mashable Social Media
Malicious Goo.gl Links Spreading on Twitter [WARNING]
A large number of messages containing only the link “goo.gl/R7f68″ have appeared on Twitter today, redirecting the users to various malware-laden sites.
Link to the story:

Damage Control
What to do if you've downloaded Software to your Computer
If you have followed one of the links on Twitter to an external website or downloaded a piece of software you are unsure of and believe you may have gotten a virus infection, I suggest you immediately uninstall any software you may have installed, then run a virus check on your system. If you don't have a Virus Scanner on your system, here is a list of FREE ONLINE VIRUS SCANNERS. ( I suggest you check your system with at least 2 of these ): 

Online Virus Scanners:
The sites below will run a virus scan on your computer.

    Symantec Security Check
    McAfee FreeScan
    Trend Micro's HouseCall
    Onecare Safety Scanner
    Kaspersky Online Scanner
    ActiveScan 2.0 - PANDA SECURITY
    BitDefender Online Scanner
    CA Online Threat Scanner
Posted by at No comments:

Facebook Scam: "This girl killed herself on Christmas eve..."

Facebook Scam: 
"can t believe this girl killed herself on Christmas eve..."
http://apps.facebook.com/bezgaucaongirl/

Don't Fall For It.
This scam claims that you will see something pertaining to a girl who killed herself on Christmas Eve , however if you make the mistake of clicking on the link in the post you will be taken to an application drop page which we've seen before in other scams.

Post Example


Application Drop Page Example


As we can see from the applications drop page this is just another scam about the "girl who killed herself after a dad posted on her Facebook wall", and we all know those scams don't have a good ending. If you make the mistake of clicking on this page you will be asked to install the following application.

Example Application Permission Page


This application requests quite a bit of permissions. Such as the ability to post to your wall, access your data at any time and manage your pages. If you make the mistake of allowing this application, you are giving it the ability to post to your personal profile wall and if you Administrate a Facebook page, also the ability to post to your Facebook pages wall. This application simply wants this permission because in the next step it's going to spam a similar message in these places. As we will see in the next example.

Example Spam Post


If you clicked allow, after the spam post have been made, you will be taken to the following screen and you will be shown several different sets of Facebook status messages. Some of which are not even really readable. See example

Example after clicking allow


These status messages are simply a diversion from the actual intent of this particular scam. Once you scroll down to the bottom of the window, you are presented with a video which claims you need to install a codec to view it. This is a false claim and a fake codec. See examples..

Example Video


Example Codec Download Page


The download page above offers a fake version of the Xvid codec. If you have made the mistake of following along, you've just been scammed.

Scam App Info:

Applications Profile page
It's a girlb5
http://www.facebook.com/apps/application.php?id=133077220082640

Block Application Link

Damage Control

Facebook Clean Up
You need to be aware that if you have installed any bad apps into your facebook profile or clicked any clickjacked or likejacked links within facebook, you may be currently spamming your wall and or your friends news feeds with the apps or links viral/scam messages. If this has occurred you must remove the messages from your wall by deleting the post and or remove the rogue app by uninstalling it from your facebook profile. 

How to remove an Application from your profile:
If you have made the mistake of following thru with the install of a rogue application, Please do the following:

  1. Navigate to your Privacy settings- (Click Account, then "Privacy Settings").
  2. Then under the heading "Applications, Games, and Websites" click "Edit Settings".
  3. To the right of the heading "Applications You Use" Click the "Edit Settings" button.
  4. Finally find the application name in your list and click the "Little X" to the right of that name. Follow the facebook prompt to remove the app.

What to do if you've downloaded Software to your Computer
If you have followed one of the links on facebook to an external website or downloaded a piece of software you are unsure of and believe you may have gotten a virus infection, I suggest you immediately uninstall any software you may have installed, then run a virus check on your system. If you don't have a Virus Scanner on your system, here is a list of FREE ONLINE VIRUS SCANNERS. ( I suggest you check your system with at least 2 of these ): 

Online Virus Scanners:
The sites below will run a virus scan on your computer.

    Symantec Security Check
    McAfee FreeScan
    Trend Micro's HouseCall
    Onecare Safety Scanner
    Kaspersky Online Scanner
    ActiveScan 2.0 - PANDA SECURITY
    BitDefender Online Scanner
    CA Online Threat Scanner

Posted by at 1 comment:
Labels:

Thursday, December 2, 2010

The FTC's Privacy Report And You.

Consumers on the Internet have been subjected to the abuse of their personal information for a while now. Many online entities track and share your Web surfing habits and sometimes your personal information without you even knowing it. The FTC or Federal Trade Commission has taken note of this problem and has finally acted to stop some of these problems by proposing new regulations on consumer online privacy. One of the things that the FTC has proposed is the implementation of a "Do Not Track" mechanism. This mechanism will more than likely be in the form of a constant setting within consumers browsers. This would allow consumers to choose whether or not their online searching and browsing activities can be tracked by the various online entities they may encounter.

The FTC's new provisions are an attempt at easing the consumers online experience, by allowing them an better way of keeping track of all the sites that utilize and store their information. If you would like more information on this issue, you will find it available in the FTC report at the following web address.

FTC Staff Issues Privacy Report Offers Framework for Consumers, Businesses, and Policymakers

The text of the FTC Staff Report

The remarks of Chairman Jon Leibowitz as Prepared for Delivery

Your Part
The FTC will be taking public comments on this policy change until January 31, 2011. It is suggested, as you are the consumer, that you take the time and tell them what you think. You may do so at the form provided below.

The FTC's Privacy Report Comment Form (For the public)


Posted by at No comments:

Internet predator scams sorority pledges.





Police are still trying to catch an Internet predator that has scammed sorority pledges at the following universities: Florida State University, University of Florida, Auburn University, University of Alabama and Louisiana State University, via Facebook. Please watch the video below, from the Today Show, that explains in more detail how the pledges are being scammed, what can be done to avoid it and what victims of the scam should do.  



Be sure to share this information.
Posted by at No comments:

Phisher's use facebook to dupe users.

Websense Security Labs researchers are warning users to be on the lookout for e-mails supposedly coming from the Facebook security team and claiming that your account will be the deactivated.

Victims may be led to believe their account will be deactivated within 24 hours if they do not follow a link offered within the e-mail. The link will direct the user to a page on the Facebook.com domain, but once the user reaches the Facebook page they will be redirected via an iframe to an external website which is designed to Phish the users Facebook logon information. There are two variations of this bogus e-mail and since they use URLs from within the Facebook.com domain they can be much more likely to fool a user. See Example:

Click To See Full view

Please be aware that these e-mails are not from Facebook. If you receive an e-mail claiming to be from Facebook always take the time to read the e-mail and check for bad spelling and grammar usage. If the e-mail contains either or both it should set off a warning alarm and the e-mail should be reported as spam and delete it immediately.

Advise
For your safety, it is always advised that you do not follow links sent to you in this form of e-mail. If you believe the communication is from Facebook, it is much better to navigate to www.facebook.com and log into your account. If Facebook needs to notify you of something pertaining to your account, you will see this notification when you login.

Damage Control
If you have mistakenly followed any of the links in this type of e-mail and ended up entering your Facebook login information, it is important that you immediately log into Facebook.com and change your password. If your password has already been changed and you can not login to your account at that time, then navigate to the link provided below and submit a report to Facebook that your account has been compromised.

Facebook Help Center
My account has been compromised, phished, or is sending messages that I didn't send.

Posted by at No comments:
Labels:

Hello World!

Welcome to Scam Sniper's blog.
Posted by at No comments:
Subscribe to: Posts (Atom)