Loading ...
Sorry, an error occurred while loading the content.

Re: [infoguys-list] Worm steals more than 45,000 Facebook logins

Expand Messages
  • suesarkis@aol.com
    In a message dated 1/9/2012 10:22:50 P.M. Pacific Standard Time, thesquad@GeInvestigations.com writes: Worm steals more than 45,000 Facebook logins CNET by
    Message 1 of 2 , Jan 9, 2012
      In a message dated 1/9/2012 10:22:50 P.M. Pacific Standard Time,
      thesquad@... writes:

      Worm steals more than 45,000 Facebook logins

      by Steven Musil
      January 5, 2012

      A nasty bit of malware making the rounds on Facebook has reportedly made
      off with the usernames and passwords of more than 45,000 users.

      Most of those affected by the worm–called Ramnit–are from France and the
      United Kingdom, according to a bulletin issued by security researchers at
      Seculert. It is capable of infecting Windows executables, Microsoft Office,
      and HTML files, according to McAfee.

      "We suspect that the attackers behind Ramnit are using the stolen
      credentials to log-in to victims' Facebook accounts and to transmit malicious links
      to their friends, thereby magnifying the malware's spread even further,"
      Securlet said in its bulletin. "In addition, cybercriminals are taking
      advantage of the fact that users tend to use the same password in various
      web-based services (Facebook, Gmail, Corporate SSL VPN, Outlook Web Access, etc.)
      to gain remote access to corporate networks."

      The worm was first discovered in April 2010 stealing sensitive information
      such as stored FTP credentials and browser cookies. In August 2011, after
      malware developers borrowed source code from the Zeus botnet, Ramnit "went
      financial." With that added strength, Ramnit was able to "gain remote
      access to financial institutions, compromise online banking sessions and
      penetrate several corporate networks." Approximately 800,000 machines were
      infected between September 2011 and the end of the year.

      The security researcher has notified Facebook and provided the
      social-networking giant with all the stolen credentials found on Ramnit's server.

      Steven Musil is the night news editor at CNET News. Before joining CNET
      News in 2000, Steven spent 10 years at various Bay Area newspapers.

      Direct Link:


      G.E. Investigations, LLC
      866.3ISPY4U (866-347-7948)
      602.266.ISPY (602-266-4779)
      520.7ISPY4U (520-747-7948)
      AIM / ICQ: DetectiveGE
      Yahoo: GeInvestigations
      Certified Investigator
      Certified Missing Persons Investigator
      NRA Certified Firearms Instructor
      NRA Certified RTBAV Instructor
      AZ# 1003249
      "Giving you... Just the Facts!"
      Semper Fidelis!
      "Assisting you in those times of EXIGENT CIRCUMSTANCES…
      When Waiting Isn't an Option!"

      [Non-text portions of this message have been removed]
    Your message has been successfully submitted and would be delivered to recipients shortly.