facebookworm Online banking worm steals 45,000 Facebook account details

The Ramnit worm, which traditionally attacks financial services, has begun stealing Facebook login details, with over 45,000 accounts compromised so far, according to security research firm Seculert.

The Ramnit worm, which traditionally attacks financial services, has begun stealing Facebook login details, with over 45,000 accounts compromised so far, according to security research firm Seculert.

 
The worm was originally discovered in April 2010. It can infect both Windows .exe files and HTML files, and it steals sensitive information, including financial data, that is stored in FTP credentials and browser cookies. Now the virus, which accounts for 17.3 percent of new malware infections, has become a major social networking concern.
 
A hybrid virus is believed to have been created that employs the best of Ramnit and the ZeuS banking trojan, making this latest malware an even bigger threat to people's wallets, particularly considering around 800,000 computers were infected with it in the last four months of 2011.
 
ramnitbycountry Online banking worm steals 45,000 Facebook account details
 
Seculert said that the version of Ramnit that is infecting Facebook is completely new and financially-orientated. It also indicated that most of the 45,000 stolen account details come from the UK and France, suggesting a deliberate targeting of these countries.
 
Once the virus gains access to an individual's account it spreads malicious spam messages to the user's friends, who, trusting the source, click the links and end up with an infection of their own. Corporate networks are also being made vulnerable thanks to the passwords gained from Facebook.
 
Regularly updating your antivirus software, changing and keeping different passwords for each service, and remaining vigilant against suspicious messages, via email or social networks, remains the most effective method to combat this growing threat.