According to Symantec ,“Trojan.Bredolab is a Trojan horse that downloads and executes a file from the Internet.”
Now- a – days a new virus Bredolab botnet is spreading and it is coming as “Facebook resetting confirmation email”. The user’s feels that the email is genuinely send by face book team to their inbox. The email which is having the virus is like this:
“Hey,
Because of the measures taken to provide safety to our clients your password has been changed. You can find your new password in attached document.
Thanks
The Facebook Team”
The attachment with this email has a file that purports to contain a new password but in reality the attachment contains Trojan horse and can infect your computer badly. Virus Hunters has already raised an alert against this large scale spam attack which is spreading through Facebook password-reset messages to trick.
Bredolab trojan is a dangerous because it works secretly in a background. If the computer is not protected with security tools, Bredolab can infect your computer badly without raising any suspicions. It delivers various malwares on a computer. Bredolab isn’t capable of corrupting files or stealing information but the programs it installs may cause multiple damage.
On this new virus the Email security firm MX Lab explains further:
“Bredolab is a trojan horse that downloads and executes files from the Internet, such as rogue anti-spyware. To bypass firewalls, it injects its own code into legitimate processes svchost.exe and explorer.exe. Bredolab contains anti-sandbox code (the trojan might quit itself when an external program investigates its actions).”
How one can avoid this virus
First of all if you have not requested for password from facebook than there is no point to open this sort of email
If you have requested for a password reset from facebook than keep it in mind that facebook never send the password via attachment
Finally those who are not sure always check the details of email specially those who are having attachments.
If the email server doesn’t belong to facebook, which means it’s a virus. It is not any legitimate mail from facebook team.
Comments are closed.