Currently a new virus has made a comeback named Trojan.Bredolab and spreading via “Facebook resetting confirmation email”. The user’s feels that the email is genuinely send by face book team to their inbox.
Trojan.Bredolab gets in as malicious encrypted files that decrypts itself and execute the threats when run on to the Pc. Trojan.Bredolab will also hook up to a remote server and downloads added threat.
According to Symantec ,“Trojan.Bredolab is a Trojan horse that downloads and executes a file from the Internet.”
The email which is having the virus is like this:
“Hey,
Because of the measures taken to provide safety to our clients your password has been changed. You can find your new password in attached document.
Thanks
The Facebook Team”
The attachment with this email has a file that purports to contain a new password but in reality the attachment contains Trojan horse and can infect your computer badly. Virus Hunters has already raised an alert against this large scale spam attack which is spreading through Facebook password-reset messages to trick.
Bredolab trojan is a dangerous because it works secretly in a background. If the computer is not protected with security tools, Bredolab can infect your computer badly without raising any suspicions. It delivers various malwares on a computer. Bredolab isn’t capable of corrupting files or stealing information but the programs it installs may cause multiple damage.
On this new virus the Email security firm MX Lab explains further:
“Bredolab is a trojan horse that downloads and executes files from the Internet, such as rogue anti-spyware. To bypass firewalls, it injects its own code into legitimate processes svchost.exe and explorer.exe. Bredolab contains anti-sandbox code (the trojan might quit itself when an external program investigates its actions).”
Comments are closed.