Trojan nabs 16k Facebook logins

By

Steals credit card information.

A trojan that specifically harvested Facebook login credentials managed to steal more than 16,000 credentials.

Trojan nabs 16k Facebook logins

Once the details were collected, the attacker programmed the trojan to log into Facebook accounts and steal data Zynga Poker stats and the number of stored payment methods.

According to Eset, Facebook users specifically in Israel were targeted. 

It sought only active accounts which it defined as those with a high player rank and stored credit cards. Eset speculated this data could be later exploited by attackers or on sold to other fraudsters.

In the case of a user without a credit card or with a low score, the infected computer received instructions to infect the victim's profile with a link to a phishing site that lured the player's friends to a website resembling the Facebook home page where login credentials were harvested again.

Eset security intelligence team lead Róbert Lipovský said that unlike other trojans spreading through Facebook, this trojan does not log into or in any way interfere with the Facebook account of the user that is infected.

Instead, the botnet serves rather as a proxy, so that the illegal activities are not carried out from the perpetrator's computer.

This article originally appeared at scmagazineuk.com

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, UK edition
Tags:
facebookmalwaresecuritytrojan

Sponsored Whitepapers

Gaining a Competitive Advantage with Communication APIs
Gaining a Competitive Advantage with Communication APIs
Leverage Technologies: Industry-Tailored ERP Implementation for Growth and Compliance
Leverage Technologies: Industry-Tailored ERP Implementation for Growth and Compliance
Service Over Signatures: The Truth About No Lock-In IT
Service Over Signatures: The Truth About No Lock-In IT
Wasabi Reveals Hidden Costs and Cloud Storage Shifts in ANZ for 2025
Wasabi Reveals Hidden Costs and Cloud Storage Shifts in ANZ for 2025
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks

Events

Most Read Articles

CBA using facial recognition logins to verify disputed payments

CBA using facial recognition logins to verify disputed payments
Top US diplomat impersonated with AI by unknown actor

Top US diplomat impersonated with AI by unknown actor
UK police arrest four over cyberattacks on M&S, Co-op and Harrods

UK police arrest four over cyberattacks on M&S, Co-op and Harrods
Google Gemini for Workspace vulnerable to prompt injection attacks

Google Gemini for Workspace vulnerable to prompt injection attacks
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?