Password-stealing malware targets thousands of Facebook business
As a business, you may use Facebook and other social media platforms to promote your brand, connect with customers and engage with fans. But the platform is also a magnet for scammers and hackers who want to steal your usernames, passwords and other data.
Password-stealing malware, for example, can steal your login credentials as you log into different online accounts. This kind of malware is a broad family of malicious software that does everything from logging your keystrokes to spying on your devices and even hijacking your webcam to capture video or audio. Criminals have a number of ways to harvest these credentials, including using automated tools like bots and crawlers that scan the internet for accounts to crack. Many people also reuse the same passwords across multiple sites, which gives criminals a huge opportunity to brute-force their way in.
Cybercriminals are always looking for new ways to grab your data and make money off it. That’s why you should keep an eye out for new threats and update your passwords regularly. You should also keep a list of your usernames and passwords, so that you can easily reset them when they’re stolen.
Keeping your browsers up to date and avoiding suspicious extensions can help keep you safe from these kinds of threats. You should also be wary of clicking on links in emails and downloading apps from unfamiliar sites — these programs could contain malware.
Last year, the Google Play store removed a collection of nine apps that were designed to steal your Facebook credentials. The apps included a photo converter, a video player and more, but they all had one thing in common: They used the Facebook API to collect your personal information, including your passwords. If you downloaded any of these, change your Facebook passwords as soon as possible.
You should also clean up any malware that lands on your system. If you’re not sure if your computer has been infected with a bad program, you should ask an IT professional to take a look. In some cases, you might need to rebuild your machine to ensure that it’s clear of malware that could compromise your data.
Another big threat to watch out for is phishing. For instance, the fake Facebook and Instagram login pages that were spotted this week are a good example. These phishing attacks direct you to login to fake sites that will capture your usernames and passwords.
In addition, Facebook recently warned users of a resurgence of malware that targets business account holders of the platform. The company warned that attackers are stealing credentials to run unauthorized ads on the site. This type of malware is often spread through browser extensions and fake Facebook ads. It also includes new iterations of well-known information-stealing malware such as DuckTail and others. This kind of malware enables bad actors to assess and hijack business accounts on platforms such as Facebook and Gmail. Then, they can access ad campaigns and other data.