StressPaint: If any of you have used a painting app on Facebook that is advertised as a stress relief tool, you are in danger as it is a malicious software which steals login information but also payment information if present in the account.
'StressPaint' first appeared a few days ago and has so far infected over 45.000 Facebook users. The attacks appear to specifically target users who use Facebook pages and have a payment method set up in their account.
Revealed by company security Radware. This particular malware appears to be spreading very quickly around the world at very high rates contaminations, and seems according to the researchers, to have been "professionally developed".
StressPaint steals the victim's account information by duplicating it content of Chrome browser cookies and files date of connection. Once the saved Facebook credentials are detected, they are sent to a server designated by its malicious creators.
With stolen credentials, additional information is gathered from the infringed account, such as the number of friends, whether the account manages a page or not, or whether a payment method is set up.
We believe the malware process is active in the system for less than a minute in specific cases, which helps malware remain undetectable.
At the moment, attacks seem to collect data, but researchers report that stolen information could be used in many different ways, such as selling credentials to underground forums, victim excuses, espionage, profit stolen payment information, and much more at all but not at all pleasing.