Skip to main content

Troubling malware threat spreading on Facebook and Twitter

A newly developed malware attack has become more prevalent due to its disguise as advertisement for products on social media sites such as Facebook and Twitter.

A new kind of malware attack is spreading like wildfire on social media, including Facebook, and through posts on Twitter. There have already been an estimated 500,000 infections worldwide, according to researchers at Guardio Labs. 

More recently, there is a noticeable surge of fake campaigns on social media sites like Facebook and Twitter where infected promoted posts and ads are deliberately posted to install malware when you click on them. 

This troubling new method of spreading malware is known as 'Malverposting'. Here's what we know about it. 

CLICK TO GET KURT’S FREE CYBERGUY NEWSLETTER WITH SECURITY ALERTS, QUICK TIPS, TECH REVIEWS, AND EASY HOW-TO’S TO MAKE YOU SMARTER 

Malverposting happens when someone uses promoted social media posts and tweets to spread malicious software and other security threats. The way these scammers work is by paying for ads that will boost their malicious posts so that more people see them and then fall for their malware scam.

HOW SCAMMERS ARE SELLING COUNTERFEIT STAMPS ON FACEBOOK ADS  

Many of these posts contain content that will bait you into believing that they're real. Some will be fake ads for clothing or electronics being sold for super cheap prices, while others will try to convince you to invest in a fake scam or download an app that is actually fake. 

One particular campaign that has been gaining traction over the last few months is happening on Facebook. It works by creating new fake business profiles and hijacks real profiles that have large followings. With these profiles, it overwhelms people's Facebook feeds with malicious click-baits promising adult-rated photo album downloads for free. 

When a victim clicks on the post from this campaign, a malicious ZIP file is downloaded to their computers. The ZIP file contains tons of "photos" that, when clicked, will initiate the process of releasing malware onto the device being used.

The malware will then secretly copy the user's sessions, cookies, accounts, crypto-wallets and more, and send the information from their computer or device to the scammer without the user's knowledge. This can severely hurt the users who fall for the bait, and it also deeply hurts the legitimate business profiles whose information gets compromised and essentially halts their business from flourishing in a social media setting. 

FOR MORE SECURITY ALERTS LIKE THIS, SUBSCRIBE TO MY FREE CYBERGUY REPORT NEWSLETTER AT CYBERGUY.COM/NEWSLETTER 

FREE ANTIVIRUS: SHOULD YOU USE IT? 

There are a few steps you can take to make sure that you do not fall for a fake scam on social media. Here are some of my tips: 

Look closely at the language of the post. The language of a post is a lot more important than you think. If you look closely and notice that a post is trying very hard to push a product on people by using insanely low prices that won't be found anywhere else (like a laptop being sold for $20 for example), then that's a huge red flag for a scam. 

Stop if you see urgent messages from a "friend" asking for money. It could be a hacker behind that post, pretending to be your friend. 

Check out a company before you buy. Do a quick online search for the store’s name, and look for reviews and complaints from other customers. You should also check the Better Business Bureau website to see if the store has a rating or any complaints. If you see a lot of negative reviews and comments, don’t trust them. 

Don’t deal with a vendor requiring cryptocurrency, gift card, or wire transfer payment. That’s sure to be a scam. 

DESPERATELY NEED FACEBOOK HELP? DON'T FALL FOR THIS SCAM 

Have good antivirus software on all your devices. This story is also another reminder to always have good antivirus software running on your devices, as these social media scams can entail the victim clicking on a fake post. Antivirus software on your devices will stop you from clicking on any potential malicious links in social media posts. 

See my expert review of the best antivirus protection for your Windows, Mac, Android and iOS devicesby visiting CyberGuy.com/LockUpYourTech

The team at Guardio did reach out to Meta (the parent company of Facebook) to make them aware of these alarming facts. According to the security group. Meta's research and engineering teams are actively working to stop the propagation on their ad network. 

Have you noticed any malware scams on social media lately? Let us know at CyberGuy.com/Contact. 

For more security alerts like this, subscribe to my free CyberGuy Report Newsletter by heading to CyberGuy.com/Newsletter. 

Copyright 2023 CyberGuy.com. All rights reserved. 

Data & News supplied by www.cloudquote.io
Stock quotes supplied by Barchart
Quotes delayed at least 20 minutes.
By accessing this page, you agree to the following
Privacy Policy and Terms and Conditions.