Facebook scam leads victims to Nuclear exploit kit

Share this article:

The ubiquitous “EXPOSED: Mom Makes $8,000/Month From Home” comment on posts ranging from the political to the touching is one of many Facebook scams now used to exploit a user's system, according to researchers at Symantec.

By clinking on the link, users are redirected to a third-party site that has been injected with an iFrame for the Nuclear exploit kit, Symantec's Ankit Singh said in a blog post.  

After checking a victim's system for vulnerabilities in Java, Internet Explorer, Adobe Reader and other apps, the kit drops the Trojan.Ascesso.A on the system.

Noting that attackers have grown “more aggressive,” Symantec researchers said that once Trojan.Ascesso.A. exploits a system, it's known to send spam emails as well as download files from remote locations. Facebook has since removed the “EXPOSED: Mom” scam.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS

More in News

Information sharing requires breaking down barriers, White House cyber guru says

Information sharing requires breaking down barriers, White House ...

The White House has advanced an agenda to promote and facilitate information sharing on security threats and vulnerabilities.

Worm variant of Android ransomware, Koler, spreads via SMS

Worm variant of Android ransomware, Koler, spreads via ...

Upon infection, the Koler variant will send an SMS message to all contacts in the device's address book.

Patch for Windows flaw can be bypassed, prompts temporary fix from Microsoft

Patch for Windows flaw can be bypassed, prompts ...

The Windows zero-day received a patch last week, but the fix can still be bypassed by crafty attackers.