Facebook scam leads victims to Nuclear exploit kit

Share this article:

The ubiquitous “EXPOSED: Mom Makes $8,000/Month From Home” comment on posts ranging from the political to the touching is one of many Facebook scams now used to exploit a user's system, according to researchers at Symantec.

By clinking on the link, users are redirected to a third-party site that has been injected with an iFrame for the Nuclear exploit kit, Symantec's Ankit Singh said in a blog post.  

After checking a victim's system for vulnerabilities in Java, Internet Explorer, Adobe Reader and other apps, the kit drops the Trojan.Ascesso.A on the system.

Noting that attackers have grown “more aggressive,” Symantec researchers said that once Trojan.Ascesso.A. exploits a system, it's known to send spam emails as well as download files from remote locations. Facebook has since removed the “EXPOSED: Mom” scam.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

More in News

Beazley: employee errors root of most data breaches, but malware incidents cost ...

Insurance firm Beazley analyzed more than 1,500 data breaches it serviced between 2013 and 2014.

Apple issues seven updates, fixes more than 40 vulnerabilities in iOS 8, OS 10.9.5

Apple issues seven updates, fixes more than 40 ...

In one of its infrequent "Update Surprisedays," Apple plugged holes, boosted security and added features.

Canadian telecom co. Telus unveils first transparency report

The company received more than 100,000 government requests for customer data last year.