I see that hackers are at it again. I just got an email from a newbie on my list who most likely was hacked and now her account is spewing emails with a link intended to fool you into giving your Fubar info.
This is the email subject:
And what if your spouse see this film?
This is the Text of the email:
LOL
http://www.youtube.com/watch?v=1346230617
what the link really says if you click reply"
=== '
nascarlady' wrote the following at '2009-03-04 17:00:07'..
>
> LOL
> a href="http://intofindyour.com/go/fu.php?5b1chcdd9=1346230617">http://www.youtube.com/watch?v=1346230617
Going to the link it takes you to a fake Youtube site and asks to install a Flash update. The file that is offered is infected with Worm:Win32/Koobface.A
New worms target both MySpace and Facebook users
Kaspersky Lab, a leading developer of secure content management systems, has detected two variants of a new worm, Net-Worm.Win32.Koobface.a. and Net-Worm.Win32.Koobface.b, which attack MySpace and Facebook respectively. As part of their malicious payload, the worms transform victim machines into zombie computers to form botnets.
Even though the worms are currently only infecting MySpace and Facebook users, Kaspersky Lab analysts are warning users that the worms are designed to upload additional malicious modules with other functionality via the Internet. It is highly probable that victim machines will not only be used for spreading links via these social networking sites, but the botnets will also be used for other malicious purposes.
Net-Worm.Win32.Koobface.a spreads when a user accesses his/her MySpace account. The worm creates a range of commentaries to friends' accounts. Net-Worm.Win32.Koobface.b, which targets Facebook users, creates spam messages and sends them to the infected users' friends via the Facebook site. The messages and comments include texts such as Paris Hilton Tosses Dwarf On The Street; Examiners Caught Downloading Grades From The Internet; Hello; You must see it!!! LOL. My friend catched you on hidden cam; Is it really celebrity? Funny Moments and many others.
Messages and comments on MySpace and Facebook include links to http://youtube.[skip].pl. If the user clicks on this link, s/he is redirected to http://youtube.[skip].ru, a site which purportedly contains a video clip. If the user tries to watch it, a message appears saying that s/he needs the latest version of Flash Player in order to watch the clip. However, instead of the latest version of Flash Player, a file called codecsetup.exe is downloaded to the victim machine; this file is also a network worm. The result is that users who have come to the site via Facebook will have the MySpace worm downloaded to their machines, and vice versa.
