Social networks are platforms widely used by users on the network. This also makes them in the crosshairs of hackers. Ultimately, if they use a very popular service, they may have a greater chance of success. In this article we echo SilentFade . It is a family of malware that they are using to attack through the Facebook advertising platform.
SilentFade, the latest threat used by Facebook
Cybercriminals use different means to spread their attacks. They can make use of email, social networks, messaging programs … In this case, they have used the Facebook advertising platform to use it as bait. There they distribute sales of counterfeit products, misleading advertising, and fake reviews.
Keep in mind that this type of malware is not new. This variety is distributed through potentially unwanted programs, pirted copies of popular software, and also even through other malware, as security researchers believe.
Once this malware is installed on the victim’s computer, its mission is to steal Facebook credentials and cookies from various browser credential stores. Later the stolen data is sent to the C2 server. Then SilentFade, or its clients, could use the compromised user’s payment method to run malicious ad campaigns on the social network.
As reported by security researchers, SilentFade is equipped with credential stealing components like those used by other malware campaigns. However, unlike the others, SilentFade’s credential stealing component only recovered Facebook-specific stored credentials and cookies located on the compromised computer.
As soon as the attackers gain access to the victim’s Facebook account, they disable notifications completely by sending web requests. SilentFade also takes advantage of Facebook’s option to explicitly block pages from messaging them. The researchers noted that this was the first time they observed malware actively changing notification settings, blocking pages, and exploiting a bug in the blocking subsystem.
How to avoid malware attacks on social networks
But this type of threat is not unique. There are many attacks that in one way or another can reach social networks . Hackers take advantage of vulnerabilities, deliver malicious software, and constantly look for ways to steal information.
Common sense is very important. Most of these attacks will require user interaction. It is vital not to make mistakes. It is also essential to have security tools that can prevent the entry of malicious software.
On the other hand, updates and patches must always be present. On many occasions, vulnerabilities arise that can be exploited by hackers. We need to install those new versions to correct the problems.