Another Facebook scam is circulating across the social networking website that attempts to fob Facebook users into clicking on a link for a celebrity sexual activity record that instead downloads malware onto their computers.
Once installed, the malware would strength spider web browsers to display aggressive advertising spider web pages which include sites alongside nudity as well as imitation lotteries.
The spam drive was uncovered past times researchers at Cyren, who noted that a malicious Google Chrome extension is spreading nude celebrity PDFs through mortal messages as well as posts on diverse Facebook groups.
If opened, the PDF file takes victims to a spider web page alongside an picture containing a play button, tricking users that the PDF may incorporate a video.
Once clicked, the link redirects users of Internet Explorer, Firefox, or Safari to a spider web page alongside overly-aggressive popups as well as advertisements related to nudity as well as imitation lottery.
But on the other hand, this celebrity sexual activity record scam makes the affair worse for Google Chrome users.
The Scam is Fatal for Google Chrome Users
Once victims instruct to install the malicious extension, the browser directs users to the Facebook.com login page as well as prompt them to re-authenticate, allowing attackers to collect Facebook users' credentials as well as and thus role their accounts to spread the malicious drive further.
When analyzed the Chrome extension's rootage code, the Cyren squad discovered that the extension comes alongside back upwardly for monitoring as well as intercepting spider web traffic inward real-time, to create upwardly one's heed what users tin access through their browsers.
The malicious Chrome extension contains a long listing of Antivirus as well as AntiSpam domains that it blocks as well as prevents the user from opening.
Besides this, the malicious Chrome extension also prevents victims from accessing the Chrome Extensions settings page, thus that victims tin non disable the malicious add-on.
"It also blocks the chrome extensions as well as chrome devtools tabs from beingness opened, preventing the user from uninstalling the malicious Chrome extension," the researchers say.The PDF uploaded to Facebook is generated past times selecting the holler of a celebrity randomly from the script file as well as combining the selected holler alongside random characters.
The holler of celebrities includes Selena Gomez, Jessica Alba, Jennifer Lawrence, Hilary Duff, Paris Hilton, Rihanna, Kim Kardashian, Scarlett Johansson, Kelly Brook, Doutzen Kroes, Elodie Varlet as well as Nicki Minaj.
According to Cyren researchers, the cyber criminals behind this malicious spam drive managed to upload their extension to the Chrome Web Store, though the extension has since been removed past times the Google's safety team.
How to take away the Malicious Chrome Extension?
To take away this malicious extension, the infected users would get-go stimulate got to delete the Registry telephone substitution from the Registry Editor.
To practise this, Go to Start Button → Type "regedit" inward the Search/Run option, which volition opened upwardly the Windows Registry Editor.
Now, role the side bill of fare inward the novel window to notice the folder below, right-click it as well as select "Remove."
This is the path to the Registry Editor:
HKEY_LOCAL_MACHINE\Software\Google\Chrome\ExtensionNow the minute footstep is to take away the extension from the browser. Since the malicious Chrome extension prevents victims from accessing the native Chrome Extensions settings page, i must take away the extension past times deleting the next folder from one's PC.
C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\ExtensionsThis activity volition take away all Chrome extensions from your computer. You stimulate got no choice other than deleting the folder completely to instruct rid of the malicious threat, equally you lot tin non access the Chrome Extensions settings page to instruct the ID of the malicious extension.
Last but non the least, no celebrity latterly stimulate got had their sexual activity record leaked (at to the lowest degree non i that's available online). So if you lot come upwardly across whatever link claiming to demonstrate a leaked sexual activity record of Jessica Alba, Jennifer Lawrence or whatever other, holler back merely to written report it.
