"You look funny in this new video", thats the subject for the mail you get in your facebook inbox. Please do not open it, its a VIRUS(WORM). It gives you a link and when you open it, it says "an update of Flash is needed before the video can be displayed", Then If the viewer approves the Flash installation, Koobface attempts to download a program called tinyproxy.exe. This loads a proxy server called Security Accounts Manager (SamSs) the next time the computer boots up. Koobface then listens to traffic on TCP port 9090 (To know more about TCP, check out http://www.youtube.com/watch?v=Ve7_4ot-Dzs) and proxies all outgoing HTTP traffic. For example, a search performed on Google, Yahoo, MSN, or Live.com may be hijacked to other, lesser-known search sites. Good news, only a few people were attacked, Instructions on how to remove the virus is on http://www.facebook.com/security.
Credits to CNET News! http://news.cnet.com/8301-1009_3-10113981-83.html?tag=newsEditorsPicksArea.0
Posts
