Dorkbot Spreads via Facebook Chat

Wednesday, May 15, 2013 @ 04:05 PM gHale

There is a new variant of the Dorkbot worm designed to spread from one computer to the other by abusing Facebook’s internal chat.

Once it infects a device, it is capable of monitoring the victim’s browsing activities, but it’s also capable of stealing their personal information such as usernames and passwords, said researchers at Bitdefender. Moreover, cybercriminals can use it to download additional malicious components onto the infected machine.

New TDL Malware Releases
Malware Costs Consumers $4B a Year
‘Cyber risk Intelligence’ for Total Security
Firms Don’t Budget to Protect IP

This comes as more of a warning to be aware because more manufacturing automation companies using social media for the organizations.

The Dorkbot malware family is most prevalent in the United States, India, Portugal, Romania, Germany, Turkey and the United Kingdom, the researchers said.

To trick users into executing it, the malware poses as a harmless .jpg image file.

Dorkbot, which uses IRC to send and receive data, can also spread via USB drives connected to an infected device.

To protect against this threat, Bitdefender researchers advise users to avoid clicking on suspicious links received via instant messages, even if they appear to come from a friend.

Leave a Reply

You must be logged in to post a comment.