Loading ...Do not wonder if you receive message about your facebook passport reset.
The message that you will see is below:
Subject: Facebook Password Reset Confirmation Customer Support
Message: “Dear user of Facebook,Because of the measures taken to provide safety to our clients, your password has been changed. You can find your new password in attached document. Thanks, Your Facebook.”
Facebook is actually warning users about Bredolab malware serving campaign, which is actually known as Facebook Password Reset Confirmation Customer Support.
According to Gary Warmer, the malware is called Bredob. It has been spread by spam year 2009 in the month of May. They actually observed that UAB Spam Data Mine has at least eight versions of Bredolab malware since March 16. The latest version of Bredolab used in the latest attack campaign is not detected by majority of anti-virus services, which means majority of users who click on the bogus attachment linked to a fake email, are going to have their computers infected.
In a recent published paper by Trendmico they provided the connection between ZEUS and Bredolab:
Zeus and Bredolab are both individual tools that are freely available in cybercriminal underground.
Zeus steals information from infected systems and Bredolab is a software that allows cybercriminal organizations to give any kind of software to its victims. If the user’s machine is already infected by Bredolab, it will receive regular updates of malware the same it will receive updates from user’s security vendor.
Source: http://blogs.zdnet.com/security/?p=5787&tag=nl.e539
