This week’s Facebook and Twitter abuse

Spam and malware distribution is a business. So if something works then don’t change it. We speculate that these attacks work since our labs have seen them repeated almost unchanged for months now. (See this post about Twitter spam and this post about twitter spam). The recipe for success when you’re trying to get people to visit pharmacy sites or voluntarily install malware:

  • Use a known Internet brand like Twitter or Facebook 
  • Make it compelling – “You have one direct/personal message”
  • Sit back and wait for the clicks

Examples from the last few days:

  • Twitter message leads to pharmacy site
  • Facebook message comes with attached malware