Bkav Information Security Company reported that Fabookie has discovered more than 100,000 computers infected with malware in Vietnam. Fabookie is designed to steal information through cookies and passwords saved on the computer's browser, similar to many other types of malware that have the function of stealing accounts. Once hackers have cookies that save login sessions and passwords, they can change the information and then take complete control of the victim's account.

Security experts say that Fabookie is particularly "preferred" to Facebook Business accounts. The malware is capable of checking the decrypted Cookie, viewing the account's login status, and then using Facebook Graph API Queries (a method of querying data from Facebook) to get more information about the target account, payment method, balance, etc.

If this malware successfully exploits the data block and obtains information about the Facebook Business account, the hackers behind the attack can use the victim's account to run ads instead of changing the password and taking over without the victim knowing.

In this way, they will achieve many different goals (without additional costs) such as earning more profits, improving SEO rankings (helping websites display priority on search engines) of web addresses containing malicious code to spread more strongly.

Account hijacking will be disadvantageous for them because there is a high chance that the administrator will detect it and disconnect the available credit card.

Following the trend of new generation malware, Fabookie only targets machines running 64-bit operating systems.

Experts recommend that users should not install and use software and tools that help crack copyrights, create key strings, and limit the use of the password saving feature on the browser for important accounts.

In addition, users in general and those holding Facebook Business administrative accounts should not access suspicious links or from strangers, avoid logging into accounts on untrusted devices...

Khanh Linh