Facebook worm poses as two blonde women

If you’re a Facebook user be on your guard against the latest worm reportedly spreading on the system.

First identified by Danish security researchers at CSIS, the worm appears to have been spread via malicious links on the social networking site.

The danger, of course, is that one of your Facebook friends may have had their account compromised (maybe they were sloppy with their password security, or gave access to a rogue application) and you might be tempted into clicking on a link seemingly posted by them.

Although the links pretend to point to an image, the truth is that a malicious screensaver is lurking behind an icon of two blonde women:

When the code is run it attempts to download futher malware hosted on a compromised Israeli website.

At the time of writing, the malware is not present on the Israeli website (all that remains is a message seemingly from the…

Read more in my article on the Naked Security website.

Found this article interesting? Follow Graham Cluley on Twitter or Mastodon to read more of the exclusive content we post.

Graham Cluley •   @gcluley

Graham Cluley is a veteran of the cybersecurity industry, having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent analyst, he regularly makes media appearances and is an international public speaker on the topic of cybersecurity, hackers, and online privacy. Follow him on Twitter, Mastodon, Bluesky, or drop him an email.