Vulnerability Management

Facebook scam leads victims to Nuclear exploit kit

Share

The ubiquitous “EXPOSED: Mom Makes $8,000/Month From Home” comment on posts ranging from the political to the touching is one of many Facebook scams now used to exploit a user's system, according to researchers at Symantec.

By clinking on the link, users are redirected to a third-party site that has been injected with an iFrame for the Nuclear exploit kit, Symantec's Ankit Singh said in a blog post.  

After checking a victim's system for vulnerabilities in Java, Internet Explorer, Adobe Reader and other apps, the kit drops the Trojan.Ascesso.A on the system.

Noting that attackers have grown “more aggressive,” Symantec researchers said that once Trojan.Ascesso.A. exploits a system, it's known to send spam emails as well as download files from remote locations. Facebook has since removed the “EXPOSED: Mom” scam.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.