Malware checks the operating system and web browser
A new campaign has been recently deployed by cybercriminals trying to extend the Asprox network of infected computers, relying on fake email messages pointing to malicious online locations.
The crooks use as lure an alert that allegedly comes from Facebook, informing the recipient that their password for the social networking website has been changed.
Bogus information used as a lure
To make the communication more believable, the cybercriminals included in the email original graphics from Facebook and even a brief report of the suspicious activity that triggered the password reset action.
The report, signed by “The Facebook Security Team,” claims that an unidentified individual used Opera browser running on an Android device to access the Facebook account without authorization. A bogus IP address and its estimated geographical location are also provided.
Full Article