Beware of the Koobface malware that will infect your Computer. Websense Security Laboratories ThreatSeeker Network has discovered the Koobface malicious software campaign is now employing a Xmas theme. Contemporary developments by Koobface have included use of Google Reader. The Koobface site offers a video posted by 'SantA'.
The common device of requiring a codec to observe the video is used to spur the user to install and run a file called setup.exe
(SHA: a2046fc88ab82abec89e150b915ab4b332af924a).
This file is at present detected by sixteen out of 41 antivirus products, according to VirusTotal. On the Facebook page, the link ch [removed] cher.ch, is offer to the user which is a compromised site in Switzerland. The user is redirected to one of many Koobface web sites thru an evil Flash movie file hosted on the compromised site. When the user runs the infected file, the worm will gets automatically login to their Facebook, MySpace, and several other networking sites and send messages to all their friends and associates. This isn't the 1st time the Koobface worm has infected social networking web sites. Cases of the same have been reported during the past too.
