Categories: News

Malicious Malware hijacks your PCs through Facebook and LinkedIn images

According to Checkpoint researchers, a variant of Locky malware is embedded in some Facebook and LinkedIn images. The malware deliberately forces the download of such images on users’ computers and then encrypts their files.

Locky is a malicious ransom malware, which is usually delivered through email in a word documents. Once user opens it, it automatically encrypts user’s files and demands a ransom for the key if users want to get their files back. This virus has been going around since earlier this year and it has infected many computers.

This recent attack on social media is a different form of Locky as it attacked through emails before. What happens is, user clicks a picture and instead of opening, it downloads on its own. That’s the Locky malware. Users are strictly advised to not open such files which they don’t recall downloading. According to CheckPoint’s research,

“The attackers have built a new capability to embed malicious code into an image file and successfully upload it to the social media website. The attackers exploit a misconfiguration on the social media infrastructure to deliberately force their victims to download the image file. This results in infection of the users’ device as soon as the end-user clicks on the downloaded file.

As more people spend time on social networking sites, hackers have turned their focus to find a way in to these platforms. Cyber criminals understand these sites are usually ‘white listed,’ and for this reason, they are continually searching for new techniques to use social media as hosts for their malicious activities.”

Watch the demo: https://youtu.be/sGlrLFo43pY

Facebook’s stance on the malware

A facebook’s spokesperson told engadget that the reports are wrong. The malware downloads because of some bad chrome extensions. He said,

“This analysis is incorrect. There is no connection to Locky or any other ransomware, and this is not appearing on Messenger or Facebook. We investigated these reports and discovered there were several bad Chrome extensions, which we have been blocking for nearly a week. We also reported the bad browser extensions to the appropriate parties.”

How to stay protected?

  • If you open a picture on social media and it starts downloading on its own, do not open it.
  • Don’t open any files which you don’t remember downloading.
  • Don’t open any file with unusual extension like SVG, JS or HTA.
  • Install a good antivirus software on your PC.

Sponsored
Maheen Kanwal

Maheen Kanwal is a Tech Journalist at TechJuice. She covers the latest technological, telecom and business related, local & global news. (Reach at maheen@techjuice.pk)

Share
Published by
Maheen Kanwal

Recent Posts

Teachers Can Now Access OpenAI’s Free AI Course

OpenAI, in collaboration with nonprofit organization Common Sense Media, announced on Wednesday the launch of…

54 mins ago

WhatsApp-Inspired Updates Under Testing in Google Messages

Google is exploring a revamped image-sharing interface in its Messages app, taking cues from WhatsApp…

1 hour ago

Create AI Video Backgrounds with YouTube Shorts’ Dream Screen

When it comes to online video streaming, YouTube is among the most well-known options. Every…

1 hour ago

Telecom Operators to Automatically Restore SIMs for Tax Filers

The Federal Board of Revenue (FBR) has introduced a comprehensive mechanism for blocking and unblocking…

3 hours ago

Trump’s Influence Fuels Bitcoin to Cross $100,000

Bitcoin broke the $100,000 mark for the first time on Thursday, driven by Trump's crypto-friendly…

3 hours ago

PSX Hits New Heights, Surges by 1,800 Points to Cross 97,000

On Thursday, the Pakistan Stock Exchange (PSX) 100 Index surged by 1,781.94 points, or 1.86%,…

4 hours ago