Facebook Fan Check Virus scare leads to malware

Beware of Googling (or indeed Yahooing or Binging or using any other internet search engine) for information about something called "Facebook Fan Check Virus", as you're likely to end up on a website hosting malicious code.

The phrase "Facebook Fan Check Virus" is currently a hot trending topic on Google, with many net users searching for information.

However, hackers have set up websites pretending to be about the "Facebook Fan Check Virus", but which really host fake anti-virus software which display bogus warnings about the security of your computer in an attempt to get you to install fraudulent software and cough-up your credit card details.

The bogus warnings look near identical to previous fake anti-virus software attacks that we have seen in the past - with a scrolling green progress bar and a list of alleged threats found on your computer displayed in a dramatic red colour scrolling up.

I visited one of the sites on my Apple Mac running Safari (see screenshots below) and was bemused to see the fake anti-virus told me that my laptop was infected with a number of threats that only infect Windows computers.

Sophos's web-filtering products detect the malicious webpages proactively as Mal/FakeAvJs-A. The analysts in SophosLabs are analysing the fake anti-virus malware downloaded by these sites, and will be issuing detection as Troj/FakeAV-ZT.

So, the obvious question is - why would you be searching for the phrase "Facebook Fan Check Virus" in the first place?

Well, it seems that Facebook users have got themselves in a tizzy about an application called Fan Check.

We haven't been able to confirm that the Fan Check application (also known as Stalker Check or FanCheck) is malicious in itself, although some Facebook users appear to be concerned that it might be behaving inappropriately. However, what is definitely happening is that fear about the application is leading internet users into danger.

Rather like the "Error Check System" application which raised concerns on Facebook in February, online rumours about Fan Check's secret agenda is causing thousands of people to turn to the internet for further information - leading them straight into a trap set up by cybercriminals.

Sophos decries XP Mode vulnerability, Microsoft offers chill pill

Sophos's Chief Technology Officer Richard Jacobs joins us as a guest blogger to discuss the implications of Microsoft including XP Mode in Windows 7. Over to you RJ..

Windows 7's planned XP compatibility mode risks undoing much of the progress that Microsoft has made on the security front in the last few years and reveals the true colours of the OS giant.

As Chet Wisniewski previously reported, we've watched Microsoft make good progress with the security of their products, from missteps like User Account Control to Kernel Patch Protection and their Security Development Lifecycle internally.

However, XP mode reminds us all that security will never be Microsoft's first priority. They'll do enough security to ensure that security concerns aren't a barrier to sales, but not so much that it gets in the way of "progress". At Sophos, we live or die based on our ability to deliver effective security. Microsoft doesn't, so when there's a trade off to be made, security is going to lose.

XP mode delivers Windows XP compatibility by creating a virtual PC, running the tried and tested OS, on your Windows 7 desktop. All your XP supported applications then run in that environment. The level of integration is such that most users won't even be aware that XP is there. XP mode makes sense and ought to help organisations to transition from native Windows XP to Windows 7. This is particularly important to Microsoft, as most of us didn't buy Vista. They can't afford for us to shun the latest incarnation of Windows as well.

The Best Sophos Partner of the Year 2009 – Malaysia

The Best Sophos Partner of the Year 2009 – Malaysia

SC Systems Sdn Bhd has been awarded ‘The Best Sophos Partner of the Year 2009 – Malaysia’.

The plaque awarded to the General Manager, Charles Kong S.C. during Sophos Partner Conference – Asia Pacific (5th – 7 th August 2009), in Dusit Thani Makati Manila Hotel Grand Ballroom, by Sophos Managing Director – Asia Pacific , Mr Rob Forsyth.

The award is to recognise the team effort and business focus to Sophos solutions by SC Systems Sdn Bhd from year 2008 to 2009.

Sophos Quarterly Partner Update

Photo member : Syed, Bong, Alvin , Charles Kong, Clarence, Mohammad fedli

22 July 2009, Sophos Partner Quarterly update Event, venue : Flo Lounge, Equatorial Hotel KL.
SC Systems team member received the official 'Sophos Gold Partner' during that night.

Tag: Photo taken by: Mohammad fedli

We received the plaque from Clarence Phua, Regional Director Sophos and Alvin Chong , Country Manager Sophos Malaysia

TORY MP HACKED ON FACEBOOK

A British MP fell victim to cybercriminals on Facebook, and his account was used for sending spam to 1500 people.

TORY MP HACKED ON FACEBOOK, SOPHOS REPORTS

IT security and control firm Sophos is reminding computer users to be on their guard against phishing attacks following news that the Facebook account of Conservative MP for Lichfield, Michael Fabricant, has been hacked.

 

According to reports, the MP fell foul of a phishing campaign that stole his username and password, and hackers then sent messages to Fabricant's 1,500 friends saying "Look at this!" and pointing recipients to a malicious webpage.  Facebook has now suspended the politician's page.

 

Fabricant reported on his blog that he was "devastated.. This has never happened to me before and I can only apologise.  If any of my Facebook Friends get a message from me called 'Look at this' - Don't!  I did when I received a similar message and look what happened to me. Outlawed from cyberspace and unable to communicate now with my cyber friends."

 

"This Tory MP's tangle with cybercriminals is no laughing matter, and for many victims of similar scams, this is just the tip of the iceberg,"

said Graham Cluley, senior technology consultant at Sophos.  "A third of computer users admit to using the same password for every website they access, and if Fabricant is one of these, he should now make it a priority to change his login details before the hackers have a chance to get to his other internet accounts.  It would do no harm for any computer user to take time to better acquaint themselves with safe computing practices, to better defend their activities online."

 

For more information, please visit SC Systems web

www.scsystems.com.my

Born of SC Systems Sdn Bhd

SC Systems was established on 08.08.2008 , which is the same day of Beijing Olympics 2008, eventially all our team members could remember our anniversary day easily.

SC Systems Sdn Bhd (828319-A) is one of the fastest growing IT security system integrator in Malaysia. With the corporate office located at the strategic place right beside Golden Triangle in Kuala Lumpur, it serves most of the corporate and MNC customers with value-added services and competitive cost. Together with the associate companies which located in Northern region and East Malaysia, we give better and wider range of business coverage and support locally.