New Facebooks Virus within month

I recently covered about a facebook worm which targeted a whole lot of facebook users. It's really sad to see that these types of scams keep growing and facebook hasn't really been able to successfully give protection to their users from such scams.

A new bloke in the list "Yeahh!! It happens on Live Television!", the most viral one yet, is spreading like a wildfire among facebook users.

The following status on one of my friend's wall bought my attention first towards this scam:

The lady is the above screen shot is Marika Fruscio an Italian Model, She had Wardrobe malfunction (Accidental exposure of intimate parts) on a live TV show, which is what the scam refers to.I had put some black square to hide her exposure cause they really irritating,hope you understand my probe.

On clicking the link, Facebook users are directed to the following page:

 In order to play the video the user has to click the button "jaa", which appears as an age verification system required in order to watch the video. when you click on "jaa" you are infact clicking on a hidden link which consequently post the same link on each of your contact's wall. Next a survey is prompted which the user needs fill in order to watch the video, thus helping the scammers make tons of money.

 While searching related to the scam on the internet, I managed to find the source code of the scam , This proves that there is not a single body behind this scam, with the source code available in public, any one could create a website and inject the malicious javascript in to it and start scamming.Although source code looks big but it is quiet easy, few cutoffs and new lines could make this code more disastrous,hope there are few that figure out what i'm going to.

How To Remove The Scam?

• It's fairly easy to remove the scam, The solution to this virus is pretty simple. If you’re facing the problem with automatic (nude) video posts on your friends walls, it is being done through the extension installed on your browser.
  So the solution to remove this facebook virus is to remove / uninstall the extension. Extension is named “YouTube Premium“.

• this virus is installing an extension which takes access to all your websites including Facebook, and is named as

  "YouTube Premium".

  In order to stop this auto posting remove this extension :-

  For chrome:
  Wrench Icon > Tools > Extensions
  For Firefox :-
  Tools > Addons > Extensions 

 

and remove that addon.and report about post to Facebook.(individual post).

• But this could be quite tedious because in this virus when you get infected, same video is get post on your friends wall silently and it is visible to public.So you need to find out it on your friends wall and report it by clicking on right side arrow of post.

• and immediately change your password along username(or email use for log in Facebook) not compulsion but for safeside.

How to prevent yourself from getting Infected ?

1. First and most important precaution , when you look this X kind of video or image or YouTube songs(which are shared on fb in huge number lately) control your curiosity to click on it (its hard) although its shared by closed ones.If you want to watch it copy its title paste on google and watch it over YouTube or Megavideo etc not on Facebook itself . 
2. Secondly most of Facebook users specially girls started using Apps to tag there friends , some creepy application like Horoscope,MyperfectMatch,know personality from name etc. Before starting using this apps it is force to allow them to access your data anytime that is where you get get comprised your privacy as this apps reportedly used in large number of scams.If these apps are really mean to you at-least revoke there posting right from app and websites setting as shown in fig.

 now these next are optional yet 80% effective precautions.

1.  Use updated Mozilla Firefox browser. Now a days most people choose different browsers like Chrome etc. but Mozilla is most powerfull and handy browser because its wide security add-on and plugins.download firefox from http://www.mozilla.org/en-US/firefox/features/

2.Next precaution is use "No-script". No-Script is Mozilla Firefox's best security addon.It allows its user control each and every script running on your browser which allow stealth protection from this kind off script scams.Anyways its only recommended for the people with basic knowledge of internet.downlod noscript from https://addons.mozilla.org/en-US/firefox/extensions/privacy-security/   or  http://noscript.net/

 Aftermath, think before "like","comment","share" on third party contents cause what your seeing is not always true.Take care while responding "tag request".

Thanks for reading,if you could please write comment in response it will help for great improvement.Have a safe internet ahead. ;)

Facebook Virus - Are you infected?

From last few months, Facebook has been widely targeted for scam and spreading malware, One of the those spreading worm I discovered recently was when I was chatting with my friend, The following message from the sudden appeared.

From the above screenshot, you can clearly see that tinyurl has been used to shorten the URL, One more thing to note is that it's not an image file as image files end with .JPG extension then -jpg.

The above screenshot describes a more clear picture of what you are going to download along with the JPG file. The exe is basically a Zeus Trojan, Zeus is one of the most popular botnets used for stealing sensitive information such as passwords, credit card numbers. One of it's popular feature is an Anti VM and Anti Sandbox capability, Making it useless for testing it inside virtual environments. 

A scan at Virus total shows that only 3/18 URL scanners were able to detect it as a malware site, Rest of them failed. 

Kindly spread the news by sharing it with your friends and people you know, So they should not fall for the malware.