StressPaint: If any of you have used a painting app on Facebook that is advertised as a stress relief tool, you are in danger as it is a malicious software who steals information connection but also payment information if present in the account.
'StressPaint' first appeared a few days ago and has so far infected over 45.000 users of Facebook. The attacks appear to specifically target users who use Facebook pages and have a payment method set up in their account.
Revealed by the security company Radware. This malware seems to be spreading very fast all over the world with very high infection rates, and according to the researchers, it seems to have been "professionally developed".
StressPaint steals the victim's account information by copying the contents of Chrome browser cookies and date files. Once Facebook's saved credentials are detected, they are sent to a server designated by its malicious creators.
With stolen credentials, additional information is gathered from the infringed account, such as the number of friends, whether the account manages a page or not, or whether a payment method is set up.
We believe the malware process is active in the system for less than a minute in specific cases, which helps malware remain undetectable.
Currently, the attacks appear to collect data, but researchers report that the stolen information could be used in a variety of ways, such as selling credentials on underground forums, blackmailing victims, for espionage, profiting from stolen payment information and many other not at all pleasant things.