Microsoft has issued a security warning after malware was discovered masquerading as web browser add-ons, that hijacks Facebook accounts.
Microsoft reported that the malware poses as malicious web browser extensions for Google Chrome and Firefox. First detected in Brazil, it attempts to keep itself updated, just like normal browser extensions.
Once downloaded onto a person’s computer the malware Trojan:JS/Febipos.A checks to see whether users are currently signed into Facebook. If they are it can then perform a variety of Facebook actions posing as you, including liking a page, sharing, posting, joining a group, and chatting with friends.
Although the malware appears to be designed to target users in Brazil where the main language is Portuguese, Microsoft warned that it could easily be modified to target users in other countries.
Microsoft caught the malware posting comments that translate as, "Sorry guys, but this is ridiculous!!!" and "The coolest tune at the moment. It's really nice!"
Protect yourself against this type of malware:
- Download browser extensions only from the official Firefox and Chrome extension repositories.
- Install legitimate anti-virus software and make sure it is kept up-to-date.
- Keep your firewall switched on to prevent access to your computer from unknown sources.
- Beware of clicking on suspicious links whilst on Facebook.
For further information visit the Microsoft website.
Please note that Action Fraud is not responsible for the content of external websites.
To report a fraud and receive a police crime reference number, call Action Fraud on 0300 123 2040 or use our online fraud reporting tool.