Saturday, January 7, 2012

Facebook Accounts login Information has been stolen by a Worm

For all you facebook users/lovers or facebookers as they are sometimes called, you all should be more careful and cautious as it has been reported that a bit of malware known as Ramnit that has making its rounds on Facebook since two years ago, has made off with more than 45,000 usernames and passwords.

According to a bulletin issued by security researchers at Seculert, most of those reported to have been affected by the worm are from France and the United Kingdom. The said worm is capable of infecting Windows executables, Microsoft Office, and HTML files, according to anti-virus manufacturer, McAfee.

Securlet said in its bulletin and i quote "We suspect that the attackers behind Ramnit are using the stolen credentials to log-in to victims' Facebook accounts and to transmit malicious links to their friends, thereby magnifying the malware's spread even further". They also said that  "In addition, cybercriminals are taking advantage of the fact that users tend to use the same password in various web-based services (Facebook, Gmail, Corporate SSL VPN, Outlook Web Access, etc.) to gain remote access to corporate networks". 

The discovery of the worm was first reported two years ago( in April 2010), it was known for stealing sensitive information such as stored FTP credentials and browser cookies. The worm later "went financial" a few months back( August 2011 to be precise) after malware developers borrowed source code from the Zeus botnet. With its new borrowed code form Zeus botnet, Ramnit was given the power to be able to "gain remote access to financial institutions, compromise online banking sessions and penetrate several corporate networks." Approximately 800,000 machines were infected between September 2011 and the end of the year, can you imagine that!!!.
Facebook has been notified by the security researcher and they(Facebook) have been provided with all the stolen credentials that were found on Ramnit's server.

No comments:

Post a Comment