A new 'Color Change' malware has hit more than 10,000 Facebook users globally. The virus asks Facebook users to change the color theme of their profiles to steal information. According to reports Facebook has repeatedly tried to fix the virus, but it resurfaces.
The malware begins by advertising an app that tells Facebook users that they can change the colour theme of their profiles. The 'Facebook colour changer' apps offers nine different colours for the profile background. Once users download the app, they are directed to a malicious phishing site, which steals users Facebook Access Tokens by asking them to view a colour changer tutorial video. Access to the tokens allows hackers to connect to the user's Facebook friends.
"If the user is on an Android device, the site issues a warning saying the device has been infected and advises users to download a suggested app," said a report on Cheetah Mobile, a Chinese Internet company.
Security experts warn users that if they have accidentally downloaded the app, they should delete it and change their Facebook passwords immediately.
With the increase in malware online, Facebook in coordination with Trend Micro and F-Secure has incorporated a new security solution that helps detect malware and keep devices secure for Facebook users. Once a user logs in from an infected device, a pop notification surfaces on the screen along with recommendation to use F-Secure's malware scanning and cleanup technology or HouseCall from Trend Micro. Facebook has also acquired cyber security startup Private core, in an effort to improve defences of its vast server network.
Source: The Guardian