This site shows the user a fake error message designed to trick them into downloading a malicious Chrome extension. Google Chrome users, for example, are redirected to a fake YouTube channel, complete with the official logo and branding. This site will then prompt the user to install malicious software. Then, if the victim attempts to play the video, the malware will send them to one of a number of different websites, depending on their Web browser, operating system, location, and other factors. The malicious link opens a Google document containing a blurry picture taken from the victim’s Facebook and which looks like a playable movie. As the message comes from one of the victim’s friends, they are very likely to click the link in order to view its content. The targeted user receives a Facebook message that includes the recipient’s name, the word ‘video’ and a shocked emoji followed by a shortened URL. The mechanics of the attack are relatively simple.
This threat, which is highly sophisticated and has been customized for each Web browser, has been uncovered by a security expert who received a suspicious message from one of their Facebook friends and decided to analyze its content. New cross-platform malware for Windows/Mac/Linux spreading via Facebook MessengerĪ cyber-criminal gang is using Facebook Messenger to spread a new malware specimen through links to spoof websites.
