How to check if your system is safe from Alureon/ DNS Changer or not?

Finally its 9th of July i.e. Malware Monday when there’s a risk that thousands of PC worldwide (including India) may lose their internet connection due to a virus called Alureon or DNS Changer Bot. Alureon is a malware designed to redirect the traffic to fake websites in order to steal user information such as financial transaction info or personal stuff like usernames, passwords e.t.c.

Alureon will also change the DNS of a system and redirect it to another server without any warning due to which that system won’t be able to access internet.

To check if your computer is infected or not; the DNS Changer Working Group created a list of websites which will tell you whether your PC is safe or not. One such website is http://www.dns-ok.us/.

Click on the website and it will tell you the status of your PC. If its GREEN your PC is safe but if its RED, your PC is possibly infected and you may lose your internet connection.

dns changer malware

Here’s the list of websites where you can check if your PC is infected or not. To be on a safer side we suggest you not to make any online transaction or download any unknown file from the internet on July 9th 2012.

Link: DNS OK

Viral Clickjacking is Spreading on Facebook Profiles via “Like”

A new virus attack called “clickjacking worm” is targeting thousands Facebook users and spreading very quickly. The affected profiles can be identified by seeing the “Like” in the following links:

“LOL this girl gets OWNED after a POLICE OFFICER reads her STATUS MESSAGE,”

“This man takes a picture of himself EVERYDAY for 8 YEARS!!,”

“The Prom Dress That Got This Girl Suspended From School”

“This Girl Has An Interesting Way Of Eating A Banana, Check It Out!”

girl-owned-police-officer-status-message

Whenever a user clicks on the text, he is landed to a blank page stating “Click here to continue”. As soon as he will click on that page, the above message will be posted on his Facebook profile. This way there are lots of chances to spread this virus quickly.

click-here-to-continue

Security form Sophos has identified the linked pages as being infected with the Troj/iframe-ET worm. If this worm has attack your profile also then delete entries related to the links above and be safe while checking out Facebook pages.

Images via: Sophos

Hope this worm stop attacking more profile. If you want to know more details about Clickjacking worm, Subscribe to our RSS feed. We will keep on updating you more about same.

10+ Tips to protect your Facebook profile from virus and hacking

facebookThe months September and October were not good for Facebook’s security system because of the virus that hit Facebook. But it’s more important for an individual Facebook user to protect his/her own profile from these viruses than that for Facebook developers itself as some of the viruses or an attempt to hack your profile can use your profile to share explicit content on Facebook.

Well you don’t need to worry for your protection, rather just keep important things in mind but first of all you should be familiar with the ways you should protect your profile.

Attacks and Viruses:

>>Fake home page: This was the first major attack on facebook this year. A strange link was spread on the whole Facebook which leads you to a page similar to the login page with same design as Facebook but the URL was different. The link attackers used were similar to facebook.com. That means you are giving your user id and password to any other website which redirects you to your actual Facebook profile after entering your id and password.

>>Password reset E-Mails: A recent attack on Facebook which sends user an e-mail to reset your password. These e-mails were actually sent to infect the computer. To know more read: The latest Facebook virus via password reset e-mails.

>>Virus in Facebook inbox: Again a recent attack on Facebook. This sends profile friends a personal message which contains a link that re-directs you to an infected page. The link was actually sent by a hacked Facebook profile. Most of the links are now blacklisted with Malware warnings on them.

>>Facebook used on a public shared PC: This can be a reason of your Hacked public profile as well even if you logged out from your Facebook account.

PROTECTION:

>>Never share your password with anyone, not even with your best friends.

>>While logging in, always check that the login page is facebook.com not facebookie or anything else.

>>Never click on any link on Facebook, specially those which used an URL shortener unless and until it is properly attached with the post/message.

>>Always delete cookies and clear the cache after using Facebook from a public shared computer.

>>Never left your profile logged in, somebody can misuse it just for fun.

>>Never ignore a warning from official Facebook.

>>Reset your password weekly or monthly. Reset your password immediately in case of strange activities.

>>Don’t download any file from Facebook as it can’t be official. Facebook is a social networking site not a file sharing system.

>>Don’t delete your hacked profile it can be recovered easily however you may deactivate your profile. For a hacked account read this official help.

>>Keep your system clean from malwares, malwares can be used to read the password while logging in.

>>Enter your personal details only when it’s asked by official Facebook even if it’s an E-Mail, check for it’s sender.

Just keep these tips in mind and enjoy Facebooking 😉

The latest Facebook virus via password reset e-mails

trojan-virusThere’s a new virus on the net which is relating itself from the biggest social networking site Facebook. The virus known as Bredolab is actually spreading on the net by e-mails which sends a trojan file attached to an e-mail which looks like “Facebook Password Reset Confirmation” e-mail send officially by Facebook. Few months back facebook was under the attack of fake facebook pages which was used to get the private information like password username e.t.c from the users. Fortunately that was controlled by Facebook on time but in that case Orkut was not that lucky as Facebook. Few fake pages hacked thousands of Orkut profiles.

Few things to consider:

  1. Facebook never sends an attachment with ‘Password Reset’ e-mail.
  2. Always check the sender’s domain name, it should be from facebook
  3. Do not open any unknown mail doesn’t matter what it is.
  4. Beware of Bredolab virus everywhere on the net.
  5. Don’t open a mail with subject “Facebook Password Reset Confirmation” unless you have asked for a new password.
  6. To know more about virus please visit mxlab.

Body of E-Mail:

Hey vguysville ,

Because of the measures taken to provide safety to our clients, your password has been changed.
You can find your new password in attached document.

Thanks,
The Facebook Team

(via mxlab)