Carole Theriault, senior security consultant at the company, said that Facebook ‘has sky rocketed in importance and everyone loves it’, which means cyber criminals will enjoy it too.


‘Spammers and hackers basically follow the trend, so it is not surprising at all that they are attacking Facebook and using Facebook to send out spam,’ she said.

However, Ms Theriault revealed that users of the social networking site can protect themselves from attack.

‘One of the main ways that you can try and combat this and work at this is by setting your [configuration] options,’ she said.

However, personally i feel that facebook have so many security issues that even setting your configurations spammers and criminals still have many ways to access your accounts. So we should be really careful while using facebook and any other social networking sites. Especially the teenagers and young girls.

Related Posts

• 1.3million Facebook Active Users will do “Facebook Blackout” Today
• 40% UK Teens are “Social Hackers”
• 54% US Teens profiles contained references to risky behaviors
• 50,000 Members Signed Petition Against Facebook Beacon Advertising
• Islamist Extremists will use Facebook for their Propaganda

Facebook has been infiltrated by Nigerian scammers and other cyber criminals who use compromised accounts to con users out of cash. Now that even non-tech savvy internet users know not to respond to, or click on links in, emails from strangers, online thieves have turned to social networks and are finding it is easier to trick people when posing as their friends.

On Friday, Sydneysider Karina Wells received a Facebook message from one of her friends, Adrian, saying he was stranded in Lagos, Nigeria, and needed her to lend him $500 for a ticket home.

Adrian used relatively good English but, after chatting further, words such as “cell” instead of “mobile phone” tipped Wells off that she was not talking to her friend but someone who had taken over his account.

Using sites such as Facebook allows scammers to research and target victims more effectively and avoid having their messages blocked by spam filters, said Paul Ducklin, head of technology at Sophos Asia Pacific.

It is likely the scammer obtained Adrian’s Facebook login details after he was infected with a virus delivered by email or in an infected web page.

There are a number of viruses which, once installed on a computer, send back to the hacker a detailed log of everything entered using the keyboard, including online banking details and passwords for services such as Facebook.

Wells played along with the scammer, who asked her to transfer the money into a Western Union account.

“Naturally I was concerned as, to all intents and purposes, this seemed to be legitimate,” she said.

“I pretended that I would help, obtained all the details of where he was and forwarded them to both Facebook and the relevant authorities.”

But while the Nigerian scammer used the compromised Facebook account coupled with social engineering tactics to try to convince Wells to hand over money, many are using compromised accounts to spread malware.

Typically, the victim receives a Facebook message from a friend with a subject such as “LOL. You’ve been catched on hidden cam, yo” or “Nice dancing! Shouldn’t you be ashamed?”

The body of the message contains a video clip link that appears to go to a legitimate site such as Facebook or YouTube but, when clicked on, it takes the user to a bogus web page.

Before the users can play the video they are told they need to download a video player upgrade, which is in fact a password-stealing virus.

The next time the victim logs into Facebook the malware-laden message is sent to all of their friends and the infected link is automatically added in comments on friends’ pages.

Other less sophisticated attacks on Facebook members use spam emails, some appearing to come from Facebook itself, to spread viruses.

In September security firm WebSense reported on spam emails, purportedly sent from an @facebookmail.com address, that tell the victim they have received an invitation from Facebook to add a friend.

“The spammers included a zip attachment that purports to contain a picture in order to entice the recipient to double-click on it. The attached file is actually a Trojan horse,” WebSense said.

Related Posts

• Italian Parliment to ban Facebook over Mafia Support
• It is not Surprising that spammers have entered into Facebook
• Facebook is Cheating its Users with Sponsored Stories
• Every 5th Divorce Petition is Reference to Facebook
• 70% Facebook Users Rejected New Facebook Timeline