Deprecated: Function create_function() is deprecated in /home/hidefide/public_html/blog/wp-content/plugins/wr-pagebuilder/core/core.php on line 127
{"id":556,"date":"2017-04-21T16:07:02","date_gmt":"2017-04-21T16:07:02","guid":{"rendered":"https:\/\/icaruspressblog.wordpress.com\/?p=556"},"modified":"2019-04-17T11:31:07","modified_gmt":"2019-04-17T11:31:07","slug":"blackhole-rears-its-ugly-head-facebook-and-linkedin-the-tip-of-the-iceberg","status":"publish","type":"post","link":"https:\/\/hidefideas.com\/blog\/2017\/04\/21\/blackhole-rears-its-ugly-head-facebook-and-linkedin-the-tip-of-the-iceberg\/","title":{"rendered":"Blackhole Rears its Ugly Head: Facebook and LinkedIn the Tip of the Iceberg"},"content":{"rendered":"

$\"clint$ It\u2019s no secret that as quickly as we make ways to stop the madness, the spammers are finding ways to pump up the volume. The spam landscape is becoming more dangerous than ever<\/a>, if that\u2019s even possible, and it seems that the spammers have decided to put their knives and pistols away in favor of anti-ballistic missiles and nukes. Now, if that all seems like hyperbole to you, you\u2019re absolutely right. But exaggeration doesn\u2019t necessarily not make it so, good grammar be damned.<\/p>\n

We\u2019ve been reporting for awhile<\/a> now the new sightings of dangerous new spam campaigns, most notably the faux Facebook message that leads you to believe that a friend has tagged you in a photo, and a phony LinkedIn email that tries to suck you into clicking a link to find out why some dude you\u2019ve never heard of is trying to connect with you.<\/p>\n

In both instances, the messages are quite convincing. They\u2019re clean and devoid of the obvious stuff that normally tips us off that the messages are from some clown with the language skills of a bearded dragon. They\u2019re personalized, both in the subject line and the body of the message, giving you a name that\u2019s randomized so you rarely get the same message twice. They even give you a little personal information about the fake sender. One recent message comes to mind, where an Anne Johnson, Store Manager at Jos. A. Bank Clothiers, was the \u2018sender\u2019. All this, of course, is meant to throw you off your game just long enough so that the itchy little index finger you\u2019ve been clicking with all day falls prey to the centuries-old argument: \u201cshucks, one more click\u2019s not going to hurt nothin\u2019.\u201d<\/p>\n

Very devious indeed. But getting you to believe the message is just part of the fun that the scam artists have planned for you. It\u2019s the clicking part they\u2019re really interested in, and a new report tells us just what\u2019s in store for users who\u2019ve been lulled into a false sense of security by promises of making new contacts and cleaning up in the office pool to see who can friend the most people.<\/p>\n

It turns out, v3.co.uk is reporting<\/a>, that a new security report has identified Blackhole as the lurking monster waiting to pounce if you\u2019re unfortunate enough to have been lulled by that friend request. The links, apparently, are legitimate, but the sites have been compromised and polluted with hidden iframes and redirects that affect pretty much any operating system, from \u201cAndroid to Windows,\u201d the security expert writes, so we can assume that Apple and Linux fit in there, alphabetically. A number of other legitimate firms, like American Airlines, BBC, and Verizon are mentioned as candidates for the spoofed messages, all of them very convincing and similar to what you might expect from the real company.<\/p>\n

Interestingly enough, while the tactics and delivery method are similar, the malware payload differs. We might infer from that that while the campaigns are similar, the senders are very different. The report finds that in some instances the infected links will turn your PC into a zombie, while in others, the game is purely for information theft.<\/p>\n

That Blackhole is involved in this dastardly campaign isn\u2019t really surprising. We know that the thing has been around for awhile in different variants, with version 2.0 being made available<\/a> to wannabe hackers late last year. What this news does do for us is remind us that we\u2019re not in Kansas anymore, Toto. If the old playing field was dangerous, the new playing field is littered with razor blades and shards of broken glass, and we\u2019re being sent in to play in bare feet.<\/p>\n

If your bones aren\u2019t chilled to ice yet, they should be. What makes this so very dangerous is the seeming innocence and validity of these emails, making even the most educated users click without thinking twice. We\u2019ve seen others, too, most notably, messages about failed package deliveries and one regarding a failed money transfer \u2013 both of which aren\u2019t very good and seem to have been crafted by that bearded dragon we were talking about.<\/p>\n

In fact, since the first article on the Facebook and LinkedIn scams, we\u2019ve noticed a couple of new campaigns, these ones preying on a very real human emotion: loneliness. Dating services which \u2013 saints be praised! \u2013 have found local matches for you. Odd, since you can\u2019t remember signing up for a dating service, but hey, if it came from the Internet, it must be for real, right?<\/p>\n","protected":false},"excerpt":{"rendered":"