Due to their ever-growing popularity, social networks have been a continuous target of cybercriminals to proliferate their malicious schemes. TrendLabsSM received samples of another Facebook spam, this time also taking advantage of the popular micro-blogging site, Twitter.
The mail, which poses as a Facebook notification message, uses adult-themed strings to lure users into opening the attachment. The .ZIP file attachment, Twitter.zip, contains the file twitter.html, which has an embedded malicious script that Trend Micro detects as JS_REDIR.AE.
Social networks are still on the verge of reaching their peak, as an increasing number of users spend more time on managing their accounts. According to the latest findings by Nielsen, social networking and blogging account for one in every four-and-a-half minutes people spend online.
With Facebook still remaining as one of the world’s most popular social media sites and Twitter not far behind, cybercriminals will most likely use these sites more and more to propagate malicious codes.
In fact, Twitter itself is also becoming a means of spreading spam. As discussed by Trend Micro researcher Rik Ferguson, malicious Tweets now lead to malicious .PDF and .EXE files detected as TROJ_PIDIEF.JCS and TROJ_SMALL.LEC, respectively.
Fortunately for Trend Micro product users, Smart Protection Network blocks the malicious files from running on user systems.
Additional text by Carolyn Guevarra and Jonathan Leopando