Spam Wars - Our Last Best Chance to Defeat Spammers, Scammers, and Hackers

Book Cover

The Music Video

You've got to see it to believe it: Check out the "Mister Spam Man" video at YouTube.

Search Dispatches

Archives

May 2019

March 2019

August 2018

July 2018

June 2018

May 2018

April 2018

August 2017

July 2017

March 2016

May 2015

April 2015

April 2013

August 2012

July 2012

June 2012

May 2012

April 2012

March 2012

August 2011

July 2011

June 2011

May 2011

April 2011

March 2011

August 2010

July 2010

June 2010

May 2010

April 2010

March 2010

August 2009

July 2009

June 2009

May 2009

April 2009

March 2009

August 2008

July 2008

June 2008

May 2008

April 2008

March 2008

August 2007

July 2007

June 2007

May 2007

April 2007

March 2007

August 2006

July 2006

June 2006

May 2006

April 2006

March 2006

August 2005

July 2005

June 2005

May 2005

April 2005

March 2005

Dispatches RSS Feed

Powered by Movable Type 3.121

Home

The Book

Training

Events

Tools

Stats

Web log archive.

A Dispatch

« Facebook Login Credentials Phishing | Main | PayPal Phish With HTML Attachment »

November 05, 2009

Facebook, Part Two

Earlier today we had a Facebook phishing scam to capture login credentials. Now Facebook is being abused as a way to get spam recipients to install a Trojan:

From: "Facebook Support" <confirmation@facebook.com>
Subject: Facebook Password Reset Confirmation.Support Message.
Hey [removed] ,

Because of the measures taken to provide safety to our clients, your password has been changed.
You can find your new password in attached document.

Thanks,
Your Facebook.

The attachment is a file named Facebook_Details_11c97.zip. Unfortunately, VirusTotal shows only 5% recognition by antivirus products.

Posted on November 05, 2009 at 10:30 PM