The malware is successful because so many people want to differentiate their Facebook page. The app says it will change the default Facebook blue to one of nine different colors, and it’s convincing enough that some 10,000 users have fallen for it in this latest round, according to Cheetah Mobile, a Chinese Internet company which broke the news of the latest coming of the app. The app first appeared in 2012 and then again in 2013. This latest incarnation is the third time around for it.
Those who click on the app are taken to a website where they are asked to view a tutorial video on how to change the Facebook page colors. Those who do give access to the scam articles to your Facebook “Access Token” which allows them to connect with all of your Facebook friends.
If the video isn’t viewed, the site attempts to get the person to download malware to their computer or phone. Those using computers get an offer to see a pornographic video while those on Android phones get a notice that their device has been compromised and they need to download an application to fix the problem. If the person clicks on either, malicious code will be downloaded onto their device.
This malware continues to reappear because it exploits a vulnerability in the Facebook app page that hasn’t been fixed. The vulnerability allows hackers to place malicious code into Facebook apps on Facebook. Many people believe that Facebook is secure, so they click on the app appearing on the site without giving it much thought. When a person clicks on the app, they’re redirected to a site where the hackers phish for more information or try get the person to download malware.
For those who have installed the color change app, you should immediately uninstall it, then change your Facebook password to be safe. You can uninstall the app by going to the app menu in Facebook. If you went to the phishing site and downloaded the malware, you should do a virus scan of your computer to remove it. Even if you didn’t, doing a scan is still a good thing to do if you haven’t done so in awhile.
(Photo courtesy of Capture Queen)