StressPaint: If any of you have used a painting application in Facebook which is advertised as a tool for stress relief, is at risk, as it is malware that steals login information as well as payment information if it exists in the account.
'StressPaint' first appeared a few days ago and has so far infected over 45.000 Facebook users. The attacks appear to specifically target users who use Facebook pages and have a payment method set up in their account.
Revealed by the security company Radware. This particular malware appears to be spreading very quickly around the world at very high rates contaminations, and it seems according to them researchers, to have been "professionally developed".
StressPaint steals the victim's account information by copying the contents of Chrome browser cookies and date files. Once Facebook's saved credentials are detected, they are sent to a server designated by its malicious creators.
With stolen credentials, additional information is gathered from the infringed account, such as the number of friends, whether the account manages a page or not, or whether a payment method is set up.
We believe the malware process is active in the system for less than a minute in specific cases, which helps malware remain undetectable.
At present, the attacks seem to be collecting data, but researchers say the stolen information could be used in many different ways, such as selling credentials underground. Forums, with blackmail of victims, for espionage, profit from stolen payment information and much more not at all pleasant.
