Malware from Santa ?
It used to be coal if you weren’t nice … but Malware ??
Websense Security Labs™ ThreatSeeker™ Network has discovered that the Koobface Web site offers a video posted by ‘SantA’. The usual ruse of requiring a codec to watch the video is used to encourage the user to install and run a file that is, you guessed it, malware.
This malicioius file is currently detected by less than 40% of the available antivirus products according to VirusTotal
On the compromised Facebook page the user is presented with a link to a compromised site in Switzerland. The user is redirected to one of several Koobface Web sites through a malicious Flash movie file hosted on the compromised site. If the user runs the infected file, the worm will automatically login to their Facebook, Myspace, and several other social networking sites and send messages to all their friends.
See screenshot of the malicious wall posts here.
My advice… make sure you have the right technology that prevents you from connecting to this and other infected sites using various ‘lures’… and in this case … Santa !!
