Social Media

Facebook Scam Targets Whole Foods Shoppers

Published: April 2, 2010 Reading time: 2 min

Whole Foods, a popular health and organic grocery chain, is the subject of a new Facebook scam that phishes for users’ credit and other personal information. A deluge of fraudulent Facebook Pages are popping up that promise a limited number of users Whole Foods gift cards. These Pages are accruing thousands of fans and siphoning off sensitive and lucrative data. The groups offering Whole Foods gift cards are in no way affiliated with the supermarket; rather, con artists are using the Pages to uncover important personal and financial information from users via a bogus credit assessment. After giving the requested information, users watch their computers crash as their identities are completely exposed. ...

Continue Reading

Facebook AV

Published: March 30, 2010 Reading time: 1 min

Does a Facebook-specific antivirus application sound like a good idea? Maybe not. One of our analysts saw this particular application claiming to be an antivirus wreak havoc on his Friends list. Of course, there is no such thing. Once installed on one Friend’s account, this application tags 20 Friend into a picture such as the one below: If a Friend looking through the photos then clicks on the app’s (apparently randomly generated) link, they’ll see this: ...

Continue Reading

New social media? Pay to play online games with women?

Published: March 25, 2010 Reading time: 2 min

“Dirty” or “Flirty” Ok. It’s an old formula for a successful business: pay girls to have fun with you. This time the schtick is getting on-line gamers to pay $8.25 (US) to play an online game with a female for 10 minutes. The women get to keep 40 percent. The site is GameCrush. It just opened last night and it seems to be a success (screen shots below.) “GameCrush is being touted as the first social site for adult gamers with the women online able to set their gaming mood to either ‘flirt’ or ‘dirt’, IGN reports. _ _ “The men online are known as Players and the women as PlayDates and Players pay to play while PlayDates get paid to play. _ _ “Players browse PlayDate profiles — of which there are currently 1200 — view photos and even chat with girls for free.” _ _ “At the moment it only supports Xbox 360 and some games on the GameCrush website. GameCrush plans to support PlayStation 3, Wii and World of Warcraft.” ...

Continue Reading

become a fan of Omid on Facebook

Published: March 22, 2010 Reading time: 1 min

You are invited to become a fan of Omid’s Network on Facebook. Those of you who already have a Facebook page; all you have to do is become a fan to view the Omid fan page in its entirety. But to participate fully you must join Facebook. If you do not already have a Facebook profile you will still be able to view photos and basic information (but c’mon, you know you have wanted to jump on the Facebook bandwagon – here’s a good reason why.) ...

Continue Reading

Screenshots of the latest Twitter phishing attack

Published: March 22, 2010 Reading time: 1 min

Today there’s a phishing run underway in Twitter, using Direct Messages (“DMs”). These are private one-to-one Tweets inside Twitter. The messages look like these: If you follow the link, you end up to a fake Twitter page: If you mistakenly give out your credentials, the attackers will start sending similar Direct Messages to your contacts, posing as you. The ultimate goal of the attackers is to gain access to a large amount of valid Twitter accounts, then use these account to post Tweets with URLs pointing to malicious websites which will take over users computers when clicked. ...

Continue Reading

Facebook Suffers ‘Password Reset’ Scam

Published: March 18, 2010 Reading time: 2 min

Today has been quite a busy day for scammers. We have been tracking a global scam/spam run that targets Facebook users. The lure used in the run is a familiar one: Facebook Password Reset Confirmation! Customer Support. The email looks like the following [Just it won’t notify you it’s Spam, it’s my own Software 😉 ]: The activity on this particular scam run has been global from the beginning. The malware in the attachment is pretty much what one would expect: downloaders, password-stealing Trojan, fake-AV, or bot stuff, depending on which one you got. Check out the Artemis map of this malware: ...

Continue Reading

Facebook Users Suffer From ‘Fram’

Published: March 12, 2010 Reading time: 3 min

About a year or so ago one of the “McMarketeers” decided it would be fun to run a campaign against “fram”–spam that friends send you. As you might guess, we in the Labs have no friends, so it was no problem for us to ridicule the idea. However, around the coffee machine the other day I got involved in a quick discussion about spam on Facebook. A long-term social networker genuinely thought that Facebook spam did not exist and that all the noise was from Facebookers playing games or using annoying apps. So I offered to write up an example. ...

Continue Reading

Twitter starts Direct Message phishing filtering

Published: March 12, 2010 Reading time: 1 min

Del Harvey who leads Twitter’s Trust and Safety team blogged yesterday that the social networking/micro-blogging service has begun filtering all links in Twitter Direct Messages to stop phishing: “Since these attacks occur primarily on Direct Messages and email notifications about Direct Messages, this is where we have focused our initial efforts. For the most part, you will not notice this feature because it works behind the scenes but you may notice links shortened to twt.tl in Direct Messages and email notifications.” ...

Continue Reading

Twitter Spam: Getting slim with slim URLs

Published: March 12, 2010 Reading time: 1 min

A while ago I was writing about twitter spam and I was trying to make a brief definition of this kind of spam: It follows a lot of users , has 1 post and is followed only by a few persons. Well, this changed now, because the theme became much more interesting for the people on Twitter: how to loose weight. Ironically, the URLs on Twitter also make a diet – they always get “compressed” using link shortener services. ...

Continue Reading

Cute (and malicious)

Published: March 8, 2010 Reading time: 2 min

There’s an angelically tinged infection doing the rounds at the moment that has more than a whiff of sulphur about it. We can’t say for definite, but it looks like the point of this little angel is to turn your PC into a file storage area for an IRC channel since it dumps you into #music IRC channels and makes sure you can accept various media files. Our tale begins with an Email, claiming you have a “funny picture from Facebook friends” waiting for you at Oast(dot)com: ...

Continue Reading