StressPaint: Αν κάποιος από εσάς χρησιμοποίησε μια εφαρμογή ζωγραφικής στο Facebook που διαφημίζεται σαν εργαλείο για την ανακούφιση από το άγχος, βρίσκεται σε κίνδυνο, καθώς πρόκειται για κακόβουλο λογισμικό που κλέβει πληροφορίες σύνδεσης αλλά και πληροφορίες πληρωμών αν υπάρχουν στον account.
'StressPaint' first appeared a few days ago and has so far infected over 45.000 Facebook users. The attacks appear to specifically target users who use Facebook pages and have a payment method set up in their account.
Revealed by the security company Radware. This malware seems to be spreading very fast all over the world with very high infection rates, and according to the researchers, it seems to have been "professionally developed".
StressPaint steals the victim's account information by copying its contents cookies of the Chrome browser and the files date of connection. Once the saved Facebook credentials are detected, they are sent to a server designated by its malicious creators.
With stolen credentials, additional information is collected from the compromised account, such as the number of friends, if the account manages a page or not or if a payment method is set up.
We believe that the malware process is active on the system for less than a minute in certain cases, which helps malware to remain undetectable.
At the moment, attacks seem to collect data, but researchers report that stolen information could be used in many different ways, such as selling credentials to underground forums, victim excuses, espionage, profit stolen payment information, and much more at all but not at all pleasing.