Visitors Now:
Total Visits:
Total Stories:
Profile image
By SiteProNews (Reporter)
Contributor profile | More stories
Story Views

Now:
Last Hour:
Last 24 Hours:
Total:

Malicious Images Take Devices of Facebook, LinkedIn Users Hostage

Friday, November 25, 2016 9:42
% of readers think this story is Fact. Add your two cents.

(Before It's News)

Hackers have found a new way to execute malicious code through Facebook and LinkedIn.

Check Point researchers have discovered a “new attack vector, named ImageGate,” that embeds malware in image and graphic files.

Malicious code is embedded into an image file and is then uploaded to a social media website. The hackers then exploit a misconfiguration on the social media site that forces their victims to download the image file. Once the image is downloaded, the files on the user’s personal device will automatically be encrypted. They only way to gain access is to pay a ransom.

“In the past week, the entire security industry is closely following the massive spread of the Locky ransomware via social media, particularly in its Facebook-based campaign. Check Point researchers strongly believe the new ImageGate technique reveals how this campaign was made possible, a question which has been unanswered until now,” security firm Check Point said in a blog post.

“The industry estimation is that the campaign is still raging and accumulates new victims every day. As more people spend time on social networking sites, hackers have turned their focus to find a way in to these platforms. Cyber criminals understand these sites are usually ‘white listed’, and for this reason, they are continually searching for new techniques to use social media as hosts for their malicious activities.”

Check Point recommends doing the following to stay safe:

  1. If you have clicked on an image and your browser starts downloading a file, do not open it. Any social media website should display the picture without downloading any file.
  2. Don’t open any image file with unusual extension (such as SVG, JS or HTA).

avatar

The post Malicious Images Take Devices of Facebook, LinkedIn Users Hostage appeared first on SiteProNews.



Source: http://www.sitepronews.com/2016/11/25/malicious-images-take-devices-of-facebook-linkedin-users-hostage/

Report abuse

Comments

Your Comments
Question   Razz  Sad   Evil  Exclaim  Smile  Redface  Biggrin  Surprised  Eek   Confused   Cool  LOL   Mad   Twisted  Rolleyes   Wink  Idea  Arrow  Neutral  Cry   Mr. Green

Top Stories
Recent Stories

Register

Newsletter

Email this story
Email this story

If you really want to ban this commenter, please write down the reason:

If you really want to disable all recommended stories, click on OK button. After that, you will be redirect to your options page.