If you’re looking for a reason to finally ditch Facebook… well, you’ve got plenty, but I’ll give you one more. On top of never-ending slop, scams, and algorithmic rage-bait, it’s now hosting malware. Or at least, ads that pretend to be for Windows, delivering malware designed to steal passwords and (of course) cryptocurrency.
According to a Malwarebytes report, a coordinated campaign of Facebook ads purported to give users free upgrades to Windows 11, and even sent users to a credible fake of the official Microsoft download assistant page. With the heavy push from Windows 10 following the official end of support last year, it was a savvy campaign.
The URL even included official-sounding update terms, like “25h2.” If you downloaded it, you’d get a sneaky bit of malware that searched for passwords, browser sessions, cryptocurrency, and other data that might be helpful in stealing one’s identity.
It’s a nasty bit of work, and reportedly pretty good at hiding itself. Malwarebytes says that if you try to follow the ad’s link from an IP associated with a security scanner or researcher, you get sent to Google. If you try to launch the installer in a virtual machine or it detects active scanning, it does nothing. And once it’s on your machine, it uses old tricks like hiding in the registry to survive reboots.
The use of paid Facebook ads to target victims is disturbing, but not especially surprising. In addition to letting bots and fake users run wild on the platform, and even trying to get users to talk to “real” bots, Facebook has been hosting and profiting from frauds and scams for years. Efforts to prevent scam ads have been token at best. If it made a bigger push to stop them, Meta might lose as much as ten percent of its revenue — not profit, revenue.
With Malwarebytes antivirus updating its definitions to catch this new attack, the security systems should spread to other systems soon, including Windows Defender. But you can expect similar attacks, including paid ads on Facebook and elsewhere, to use similar vectors.
This articles is written by : Nermeen Nabil Khear Abdelmalak
All rights reserved to : USAGOLDMIES . www.usagoldmines.com
You can Enjoy surfing our website categories and read more content in many fields you may like .
Why USAGoldMines ?
USAGoldMines is a comprehensive website offering the latest in financial, crypto, and technical news. With specialized sections for each category, it provides readers with up-to-date market insights, investment trends, and technological advancements, making it a valuable resource for investors and enthusiasts in the fast-paced financial world.