In the first quarter, Koobface worm infects users at record high

Share this article:

Koobface, a worm that has primarily spread on Facebook, made a resurgence during the first quarter of this year.

According to a McAfee first-quarter threat report, researchers detected nearly 120,000 samples of the worm during the first three months of this year. The quarter before, McAfee researchers saw fewer than 40,000 instances of Koobface. 

Discovered in 2008, Koobface propagates on social networking sites, such as Facebook and MySpace, through socially engineered messages sent to those on an infected user's “friend's” list.

The messages appear as if they are coming from the victim, but once targeted users click on the links contained in messages, they also become compromised by the worm and have their account credentials stolen. 

Back in 2011, researchers at security firm Websense discovered another Koobface campaign on Facebook where attackers tried to obfuscate the URL in malicious messages to avoid detection by security vendors.

McAfee did not say who is behind the renewed threat or if they are using new tactics to spread the worm, but the spike in Koobface infections keeps with its unrelenting history despite botnet takedown efforts.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS

More in News

Millenials improve security habits, more interested in cyber careers, still need guidance

Millenials improve security habits, more interested in cyber ...

Raytheon's second annual survey on the online and security behavior of Millennials shows improvement but still a long way to go.

Pakistani man indicted over spyware app creation

Hammad Akbar created StealthGenie, which allowed the purchaser to secretly monitor a cell phone's communications.

FDA finalizes guidelines on medical device, patient data security

The recommendations are aimed at providing better protecting patient health and data, as well as hoping device manufacturers take into account cybersecurity risks in the early stages of development.