Facebook Malware: Protect Your Profile - InformationWeek
Software // Social
12:10 PM
Connect Directly

Facebook Malware: Protect Your Profile

Malicious "Color Change" app has resurfaced on Facebook, compromising thousands of profiles. Here's what to do if you're infected.

One of Facebook's oldest scams has resurfaced, this time infecting more than 10,000 people around the world, according to Cheetah Mobile, a Chinese Internet company.

The app, called "Facebook color changer" claims it can change the color of users' profiles. The link appears to take people to apps.facebook.com/themsandcolors, but instead redirects them to a malicious phishing site.

Cheetah Mobile found that this iteration of the scam stems from an apparent vulnerability in Facebook's app page. This vulnerability lets hackers implant viruses and malicious code into Facebook-based applications, which direct users to phishing sites, it said.

[Facebook's latest changes include a number of improvements. Read Facebook Privacy: 10 Settings To Check.]

The latest version of the scam works in two ways. First, it asks users who click the link to view a color changer tutorial video. If users view the video, it steals their Facebook access tokens, which gives the hackers temporary access to the user's Facebook friends, Cheetah Mobile said.

"If a user doesn't view this video, it then tries a new way to spread the malicious software by getting consumers to download a malicious application," Cheetah Mobile explained in a blog post. If the person is using a PC, the site leads them to download a pornography video player. Android users will see a warning that their device has been infected and it prompts users to download a suggested app.

Security expert Graham Cluely said this scam continues to surface simply because people want to tweak their account -- whether it's by downloading an app to see who has looked at their profile -- another common scam, he said -- or because they want to turn it bright pink instead of "Zuckerberg blue."

"The key is to always be extremely wary of anything that tells you that you have to share the link or like something before it will let you get your hands on what they have promised," Cluely told InformationWeek. "They're using the lure of a Facebook color change as a way to spread their scam further."

What to do if you're infected
If you've already been infected by this malware, change your password immediately and remove the color changer app from your account. To change your password, visit your account settings and click the Privacy tab. Click Edit next to the Password option.

To remove the app from your account, click the Apps tab on your Settings page. Find the app under "Apps you use," and click the "x" to delete it.

You can also download free antimalware scanning software from Facebook. In May, the social network partnered with Trend Micro and F-Secure to offer this service, which alerts you when it detects that your device might be infected. If you're infected, you'll see a pop-up notification prompting you to download either F-Secure's malware scanning and cleanup technology or HouseCall from Trend Micro.

Cluely advised that all users should exercise caution when using Facebook and clicking on links. "The best protection is to clue yourself up and not be fooled by every message you see from your Facebook friends," he said. "Maybe they have already been duped."

Cyber criminals wielding APTs have plenty of innovative techniques to evade network and endpoint defenses. It's scary stuff, and ignorance is definitely not bliss. How to fight back? Think security that's distributed, stratified, and adaptive. Get the Advanced Attacks Demand New Defenses report today. (Free registration required.)

Kristin Burnham currently serves as InformationWeek.com's Senior Editor, covering social media, social business, IT leadership and IT careers. Prior to joining InformationWeek in July 2013, she served in a number of roles at CIO magazine and CIO.com, most recently as senior ... View Full Bio

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 2 / 2
User Rank: Ninja
8/8/2014 | 6:18:24 PM
Re: What the Zuck???
Facebook has a purpose. It's the communications vehicle for people who want to show you pictures of cats and grandkids/kids/selfies. Water seeks its own level.
User Rank: Ninja
8/8/2014 | 4:24:13 PM
What the Zuck???
I hope Zuckerberg put down his sword long enough to take care of this! Actually I don't care because I don't use FB. These social sites are time wasters. I can see people in restaurants not even interacting with each other. Instead they are pecking away on their phones FB'ing their pals. Crazy.

And I love the "Security expert Graham Cluely". Sounds like something from Monty Python.
<<   <   Page 2 / 2
How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Register for InformationWeek Newsletters
White Papers
Current Issue
IT Success = Storage & Data Center Performance
Balancing legacy infrastructure with emerging technologies requires laying a solid foundation that delivers flexibility, scalability, and efficiency. Learn what the most pressing issues are, how to incorporate advances like software-defined storage, and strategies for streamlining the data center.
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
Join us for a roundup of the top stories on InformationWeek.com for the week of November 6, 2016. We'll be talking with the InformationWeek.com editors and correspondents who brought you the top stories of the week to get the "story behind the story."
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll