Koobface Facebook and MySpace Worm Infects Users with Trojan Disguised as codecsetup.exe

The Internet Patrol default featured image
Share the knowledge

A new worm is raising havoc for Facebook and MySpace users. Called Koobface (and alternatively the Facebook Worm, MySpace Worm, Facebook Virus, or MySpace Virus) the MySpace and Facebook worm posts messages on Facebook and MySpace with links to what it claims to be a video. When the users follow the Koobface MySpace or Facebook worm link, they are told that they need to update their video player, and to “click here”.

Of course, what they download isn’t really a video player update, it’s a trojan called “codecsetup.exe” which allows their computer to be taken over and controlled remotely.

The Koobface worm, which comes in two variants, whose full names are Net-Worm.Win32.Koobface.a. and Net-Worm.Win32.Koobface.b, was first detected by Kaspersky Labs. Net-Worm.Win32.Koobface.a is the MySpace worm variant, and posts fake comments to MySpace pages, with the malicious links.

Net-Worm.Win32.Koobface.b is the Facebook worm variant, and it sends messages to infected Facebook users’ friends via the Facebook site.

Says Kaspersky Senior Analyst Alexander Gostev, “Unfortunately, users are very trusting of messages left by ‘friends’ on social networking sites. So the likelihood of a user clicking on a link like this is very high.”

The Internet Patrol is completely free, and reader-supported. Your tips via CashApp, Venmo, or Paypal are appreciated! Receipts will come from ISIPP.

CashApp us Square Cash app link

Venmo us Venmo link

Paypal us Paypal link

Gostev points out that “At the beginning of 2008 we predicted that we’d see an increase in cybercriminals exploiting MySpace, Facebook and similar sites, and we’re now seeing evidence of this. I’m sure that this is simply the first step, and that virus writers will continue to target these resources with increased intensity.”

For now it may suffice to simply not follow any links you get via Facebook or MySpace which claim to show you any kind of video. But soon – probably very soon – that will not be enough to keep you safe. The best advice is to exercise the same amount of caution with any links or attachments you get via Facebook or MySpace as you would with links and attachments you get via email. If you don’t know the person who sent it to you, don’t click on it. If you do know the person who supposedly sent it to you, confirm with them first that they really were the ones who sent it to you, and that it’s safe.

Get New Internet Patrol Articles by Email!

The Internet Patrol is completely free, and reader-supported. Your tips via CashApp, Venmo, or Paypal are appreciated! Receipts will come from ISIPP.

CashApp us Square Cash app link

Venmo us Venmo link

Paypal us Paypal link

 


Share the knowledge

5 thoughts on “Koobface Facebook and MySpace Worm Infects Users with Trojan Disguised as codecsetup.exe

  1. Ok, first of all, Randall is a retard. What the hell would the government want to control our computers for? People are not going to lose faith in the security of the internet, because there was never any faith to begin with. There’s never any security on the internet, you have to rely on your anti-virus programs. What do you mean by people are going to start going offline? How inconvenient that will be. What is your basis for stating it has something to do with the government? The virus isn’t even high tech, it’s just that people would fall for them, because “Says Kaspersky Senior Analyst Alexander Gostev, “Unfortunately, users are very trusting of messages left by ‘friends’ on social networking sites. So the likelihood of a user clicking on a link like this is very high.”” It doesn’t take a rocket scientist to figure that one out. And noooo, you’re wrong, anti-virus software sells will boom, people will rely more and more on them. Our current world highly depends on computers and the internet, if it were the case that computer companies crashed, what are we going to do? Unless you’re saying the world will end, because of some stupid virus that people fall for because of their lack of a good anti-virus software. Get Avira Anti-virus free edition. Trust me it rocks.

  2. Anyone who goes my the name morb.Does not need to call anyone a loon mork. Get a life mork and put a boot in your big mouth.

  3. This worm koobface and many other worms like them. Are so high tech that it has to be some Government operation. Something must be done and fast to fry these hackers govt operation. Are people are going to lose faith in the security of the internet. And people are going to start going offline. And PC sells and software sells well go south. And many high tech companies well start going under period.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.