Facebook virus infecting ‘Friends’ lists
Warning to all Facebook users: a new virus is going around that appears to infect the Facebook users’ Friends lists and sends out an email message asking you to download a plug-in. One word: don’t.
Warning to all Facebook users: a new virus is going around that appears to infect the Facebook users’ Friends lists. It sends out an email message with a link that asks you to download a plug-in to view a video. One word: don’t.
Already more than a dozen times today I’ve received this email message, or a variation of it, from Facebook "friends":
Jeff sent you a message.
Subject: Hey friend. "You’ve been catched on hidden cam, yo."
As with any other email you receive within Facebook, users will get this message in their Facebook email inbox as well as their default email program, such as Outlook or Outlook Express.
Following this messages is a long URL (website address) that, when clicked, takes you to what appears to be a YouTube video. This is not YouTube. When you click the video to begin, a message pops up and says you first need to download a newer Flash player to play the video. Do not do this. It’s a virus.
Symantec’s Norton Antivirus software has flagged this as a "high risk" Infostealer.Gampass virus. More info on this particular Trojan vius is here. (Note: Symantec warns the risk level is "low," since it originated in 2006, but this new Facebook email is a new iteration of the same virus.)
You might be inclined to click on this link because it’s from a friend, but they did not intentionally send it to you — and yes, their Facebook photo is attached, too.
Here’s what it looks like in Facebook:
and here’s what you see if you follow the link to the fake YouTube site:
And the dialog box instructing you to download the malicious code:
Pass this onto your Facebook friends so they do not download and open this "codecsetup.exe" file.
What to do if you downloaded the virus?
Unfortunately, there’s no quick fix if you run this virus, says Marc Fossi, manager of system development, at Symantec’s security response team:
"The Trojan is not new — it’s only the attack mechanism that is. Clicking the link won’t infect anyone. The threat is only installed if the user downloads and executes the “codecsetup.exe” file he refers to. Since Gampass can also download and install other threats onto the computer there is not a single disinfection procedure available. The user should download the latest virus definition files and run a full scan of their computer. Always keep antivirus definition files up to date is the only thing that will warn the users ahead of time. This doesn’t exploit a vulnerability so there isn’t a patch available. But the full system scan should disinfect Gampass and any other threats it downloads and installs."
Looks similar to the CNN Daily Top 10 that appears to be slamming folks today too.
Some Scumbag sent out virus infected message and video mail to all my friends on Facebook! I havent logged on in weeks,messages come through my phone, Ive been reading all week this girl saying some stupid comments about a picture of me, late last night I opened a video and immediately my computer locked up.I just posted not to open anything from me!
This happened to all of my friends… a video and then, it tells you to download whatever…. Ive heard. Some of the videos are graphic/innapropriate too!
what do you do if you were dumb enough to open it
I wish this was out sooner….I just clicked on that a couple hours ago. Crap. What's it going to do??
Thought I would send you this although I guess you might have already seen it. << Mum. Love you. xx
I don't know what it actually does, but it could do pretty much whatever they want it to do – you installed an untrusted program on your computer – it could be logging your keystrokes, scanning/encrypting/deleting documents, sending spam from your computer.
We'll be adding more info from Symantec on what you should do if you've accidentally downloaded the file. Stay tuned.
Shouldn't this post be put up on Facebook to warn unsuspecting or uninformed users?
Believe it or not, Facebook is blocking this link because it’s “Abusive”.
I too a couple of hours ago tried to open it…..i'm sending a message to all my friends so if they do get something they know not to open it.
What a great idea to spread a virus! Wish I had thought of that!
Thank goodness that I run Linux and my friends run Mac OSX. All those windows XP suckas that got infected are going to be fun to play around with!
You stupid waste of space. It has cost me hours and lots of cash to remove these viruses. Why don’t you get a real 3D life and go outside and play with your friends – that is if you have any. You twat.
If it’s a Facebook virus I don’t think it matters what OS you have.
ITS AFFECTING ALL OPERATING SYSTEMS ,,,,Didn’t you READ CLOSE ENOUGH,, SO SEEMS YOUR THE SUCKA ,,,,LOL
well this is just great, lol
Dear "Love it"
What is wrong with you? How can you take delight in others misfortunes? Have you ever heard of the saying "what goes around comes around"? I can't wait to laugh at your next misfortune…if we're all lucky enough, someone will steal your computer. Jerk.
u can’t wait to laugh at him?? HMMM vicious cycle for u too then i c
LOVE IT has NO CLUE on the virus I guess, thinks they CANT get a VIRUS ,,,WOW ,,, and get pleasure in seeing someones stuff get hacked YOUR A PIECE OF ART
How do you update antivirus definition files??
WELL I"LL BE DAMED??!!!
I got this message on my facebook today- and went to open it and my virus blocker caught it. It was "from" my brother. Stupid idiots who have nothing better to do with their time than do viruses and mess up peoples computers.
I suggest running TrendMicro's Housecall to remove the viruses. It's a free virus scanner you can run from your browser without having to install anything. Trend Micro has been around a long time so it's safe to use.
http://housecall65.trendmicro.com/
Why has Facebook not notified users, apparantly it can't be a secret to them.
lol. don't mind the jerk Kristen. it does make a point that certain OS out there are less susceptible on intrusions heheh. anywho, you don't need a Linux or MacOS for that matter. I'd say 2 antivirus with a strict real-time scanner and an aggressive firewall will do.
my second advice: it's not a necessity to update Flash video because they (Adobe/Macromedia) only provide minor updates. if your version of Flash player is not caught up you won't have any problem playing Flash-based videos. another thing to watch for is, Flash updates NEVER prompts you to update. especially when it's coming from one of those, "URGENT: YOU WON TODAY'S 43 MILLION LOTTER – HURRY AND CLAIM NOW", header then provides you with a link to click. If you want to know whether your ver. of Flash player is current, you'd have to go to Adobe's official website to confirm; if you're browser is Firefox, having Flagfox will show you the company's IP and prevents anti-phising.
Hopefully you don't have any banking info stored on your computer! Better watch your cards and accounts…
Well if you had an Apple then you wouldn't get the virus even if you clicked the link, downloaded and tried to run it.
I stupidly did this but when I got to the black screen saying that I need the new version I could not download this because I do not have Microsoft works installed in my Mac mini. Am I still affected? Thanks.