Facebook users warned: Rogue browser extensions can hijack profiles

Facebook users may have to be wary of a browser extension targeting Mozilla's Firefox and Google's Chrome, as it can hijack their profiles.

Jonathan San Jose of the Microsoft Malware Protection Center said said the threat, dubbed Trojan:JS/Febipos.A, was first discovered in Brazil.

"(T)his Trojan monitors a user to see if they are currently logged-in to Facebook. It then attempts to get a configuration file from (a particular website). The file includes a list of commands of what the browser extension will do," San Jose said in a blog post (http://blogs.technet.com/b/mmpc/archive/2013/05/10/browser-extension-hijacks-facebook-profiles.aspx ).

He said the malware can do any of the following on the Facebook profile it compromises:

Like a page Share Post Join a group Invite friends to a group Chat to friends Comment on a post

San Jose also said the malware contains a Portuguese message which, when translated into English, hints at a lure by claiming to have a video of a 15-year-old bullying victim committing suicide after showing her breasts on Facebook.

"There may be more to this threat because it can change its messages, URLs, Facebook pages and other activity at any time. In any case, we recommend you always keep your security products updated with the latest definitions to help avoid infection," San Jose said.

A separate article on The Next web said the threat appears to be currently targeting mainly Facebook users in Brazil.

However, it said the threat could easily be modified to target more users.

"The fact that it uses a configuration file shows that the criminals specifically designed it to be modular," it said.

"(Y)ou should make a point to only install browser extensions and add-ons from trusted sources such as the Chrome Web Store and Add-ons for Firefox," it added. — TJD, GMA News

Editor’s note:Yahoo Philippines encourages responsible comments that add dimension to the discussion. No bashing or hate speech, please. You can express your opinion without slamming others or making derogatory remarks.

  • Viernes Santo in Kalibo VERA Files - The Inbox
    Viernes Santo in Kalibo

    Photos by Little Wing Luna, VERA Files Text by Mitch Meñez Kalibo, Aklan--Viernes Santo or Good Friday is the most solemn of all the days in Holy Week. It commemorates the Passion and Death of Jesus on the Cross. The … Continue reading → …

  • Hugas Dugo VERA Files - The Inbox
    Hugas Dugo

    Text by Kimmy Baraoidan, VERA Files Photos by Chris Quintana and Kimmy Baraoidan Pakil, Laguna--In the small town of Pakil, Laguna resides a group of men who call themselves Hugas Dugo. Most members of the group are residents of the … Continue reading → …

  • Lenten procession more than just a spectacle VERA Files - The Inbox

    Text and photos by Kiersnerr Gerwin Tacadena, VERA Files Baliuag, Bulacan--This town is hosting what could be the country’s biggest Lenten procession consisting of more than 100 religious statues riding on carriages or carrozas. But concerns are being raised that … Continue reading → …

Poll Choice Options