Koobface Facebook and MySpace Worm Infects Users with Trojan Disguised as codecsetup.exe

The Internet Patrol - Patrolling the Internet for You

A new worm is raising havoc for Facebook and MySpace users. Called Koobface (and alternatively the Facebook Worm, MySpace Worm, Facebook Virus, or MySpace Virus) the MySpace and Facebook worm posts messages on Facebook and MySpace with links to what it claims to be a video. When the users follow the Koobface MySpace or Facebook worm link, they are told that they need to update their video player, and to “click here”.

Of course, what they download isn’t really a video player update, it’s a trojan called “codecsetup.exe” which allows their computer to be taken over and controlled remotely.


The Koobface worm, which comes in two variants, whose full names are Net-Worm.Win32.Koobface.a. and Net-Worm.Win32.Koobface.b, was first detected by Kaspersky Labs. Net-Worm.Win32.Koobface.a is the MySpace worm variant, and posts fake comments to MySpace pages, with the malicious links.

Net-Worm.Win32.Koobface.b is the Facebook worm variant, and it sends messages to infected Facebook users’ friends via the Facebook site.

Says Kaspersky Senior Analyst Alexander Gostev, “Unfortunately, users are very trusting of messages left by ‘friends’ on social networking sites. So the likelihood of a user clicking on a link like this is very high.”

No Paywall Here!
The Internet Patrol is and always has been free. We don't hide our articles behind a paywall, or restrict the number of articles you can read in a month if you don't give us money. That said, it does cost us money to run the site, so if something you read here was helpful or useful, won't you consider donating something to help keep the Internet Patrol free?
Click for amount options
Other Amount:
What info did you find here today?:

 

Gostev points out that “At the beginning of 2008 we predicted that we’d see an increase in cybercriminals exploiting MySpace, Facebook and similar sites, and we’re now seeing evidence of this. I’m sure that this is simply the first step, and that virus writers will continue to target these resources with increased intensity.”

For now it may suffice to simply not follow any links you get via Facebook or MySpace which claim to show you any kind of video. But soon – probably very soon – that will not be enough to keep you safe. The best advice is to exercise the same amount of caution with any links or attachments you get via Facebook or MySpace as you would with links and attachments you get via email. If you don’t know the person who sent it to you, don’t click on it. If you do know the person who supposedly sent it to you, confirm with them first that they really were the ones who sent it to you, and that it’s safe.

No Paywall Here!
The Internet Patrol is and always has been free. We don't hide our articles behind a paywall, or restrict the number of articles you can read in a month if you don't give us money. That said, it does cost us money to run the site, so if something you read here was helpful or useful, won't you consider donating something to help keep the Internet Patrol free?
Click for amount options
Other Amount:
What info did you find here today?:

5 thoughts on “Koobface Facebook and MySpace Worm Infects Users with Trojan Disguised as codecsetup.exe

  1. Ok, first of all, Randall is a retard. What the hell would the government want to control our computers for? People are not going to lose faith in the security of the internet, because there was never any faith to begin with. There’s never any security on the internet, you have to rely on your anti-virus programs. What do you mean by people are going to start going offline? How inconvenient that will be. What is your basis for stating it has something to do with the government? The virus isn’t even high tech, it’s just that people would fall for them, because “Says Kaspersky Senior Analyst Alexander Gostev, “Unfortunately, users are very trusting of messages left by ‘friends’ on social networking sites. So the likelihood of a user clicking on a link like this is very high.”” It doesn’t take a rocket scientist to figure that one out. And noooo, you’re wrong, anti-virus software sells will boom, people will rely more and more on them. Our current world highly depends on computers and the internet, if it were the case that computer companies crashed, what are we going to do? Unless you’re saying the world will end, because of some stupid virus that people fall for because of their lack of a good anti-virus software. Get Avira Anti-virus free edition. Trust me it rocks.

  2. Anyone who goes my the name morb.Does not need to call anyone a loon mork. Get a life mork and put a boot in your big mouth.

  3. This worm koobface and many other worms like them. Are so high tech that it has to be some Government operation. Something must be done and fast to fry these hackers govt operation. Are people are going to lose faith in the security of the internet. And people are going to start going offline. And PC sells and software sells well go south. And many high tech companies well start going under period.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.