Not using the familiar tricks such as spam SMS with malware or Facebook apps, hackers this time used an ‘unusual’ method to trap Facebookers. ‘
Notifications were used as the instrument to spread the virus. Users are informed that they are mentioned in comments by friends, and when they click the notification, they will be redirected to a website forging Facebook, where there are virus traps.
The website has an interface which looks like Facebook’s, but the link looks strange. A notification will appear and ask if users want to install an extension named ‘Buz’. And users will become hackers’ victims if they click ‘ok’.
According to Ngo Tuan Anh, an internet security expert from BKAV, in principle, Buz, the trap, also seduces Facebookers to access fraudulent websites, and invite to install apps, add-ons or extensions.
However, unlike other viruses, which are sent through chatting channels and URLs, Buz looks more ‘reliable’. If someone receives a notification from Facebook, he will not doubt it. He will click ‘ok’ and fall into the trap. It is because users have been often warned about the viruses to be infected through chatting, while they have not heard about Buz.
Chung Ta, an internal website of FPT, has quoted some experts as saying that if users are not vigilant enough and have the habit of clicking ‘ok’ or ‘next’, strange apps will be installed into browsers. After that, the apps will collect private information from Facebook users, automatically read the friend lists and, once again, will repeat the virus spreading process.
According to Bizlive, the virus has had direct impact on computers using Google Chrome or Chromium.
Nguyen Minh Duc, a renowned security expert from FPT, said users need to protect themselves from ways hackers may use to attack by being cautious about any invitation to install new apps or by clicking links.
“It would be better for Facebookers to use two-layer password and install security software to protect computers and mobile phones,” he said.
The way of setting two-layer password on Facebook is nearly the same with that on Gmail.
The expert went on to say that Facebook never requests users to install any plugin, extension, add-on or apps to be able to watch comments and videos. Therefore, he advises users not to follow any invitations of this kind.
If users discover their computers or phones are infected with the virus, they need to access the browser and delete the abnormal extension they have installed and change passwords to Facebook.
Buu Dien