If you come across any message on Facebook Messenger with a video sent by anyone, even your best friend, don't try to see it.
Researchers better safetyher Kaspersky Lab identified a continuing multi-platform malware promotion campaign on Facebook Messenger. Facebook Messenger users get a video link that redirects them to a fake site asking them to install malicious software.
JavaScript Screenshot, which is an injector. its name is "injection.js" (ebc117c0cf03ad4b13184d1253862586)
The URL redirects the victims to a Google doc that displays a dynamically produced thumbnail, such as a playable movie, based on the images provided by the sender, which, if someone clicks, redirects it to another custom page, depending on your browser and operating system.
For example, its users Mozilla Firefox on Windows are redirected to a website that displays a fake notification informations of Flash Player and then offers a Windows executable file, which is an adware software.
Its users Google Chrome redirected to a YouTube-like site displaying a pop-up message that causes the victims to download a malicious Chrome extension from the Google Web Store.
The extension is actually a downloader that downloads a file of the attacker's choice to the computer of the victim.
Apple Mac OS X and Safari users end up on a website similar to that of using Firefox but adapted for MacOS users. It contains a false update to Flash Media Player, and with the click of the user it downloads a .dmg file which is also Adware.
The same is true for Linux users.
Attackers behind the campaign do not pollute the users of all malware platforms, but with adware that gives them ad revenue.
To mention once again, that curiosity killed the cat. We recommend that you think very carefully when viewing images or video links sent by anyone, even your friends. Please verify with them and always keep the app updated protectionfrom viruses.
