You may have read this week how Facebook had disabled a number of accounts of people in an attempt to weed out spam accounts (particularly targeting "female" user accounts). In what appears to be an attempt to exploit the fact many legitimate accounts were inadvertently disabled, hackers have spammed an attack pretending to be from Facebook notifying you that your account password has been changed. While there are a number of subject lines associated with the spam, they all carry a ZIP file with malicious payload known as Mal/BredoZp-B, and the Trojan horse contained within as Troj/Agent-PLG.
Once again this is an attempt to cause havoc through social engineering and deception. Do not open the attached file or any attachment that seems suspicious. Here is sample text of the email you may receive:
Good afternoon.
A spam is sent from your Facebook account.
Your password has been changed for safety.
Information regarding your account and a new password is attached to the letter.
Read this information thoroughly and change the password to complicated one.
Thank you for your attention,
Facebook Service.
Tags: exploits, malware, threats, spyware, virus, facebook