Facebook Messenger – A Backdoor for Ransomware?

Posted by Gary Fleming on Nov 29, 2016 8:00:00 AM

In recent times, Locky has become one of the most common tools used by cyber criminals and usual comes in the form of spam emails with a disguised downloader. However, now hackers are using Facebook Messenger to spread Locky Ransomware by sending malicious .SVG files disguised as images or videos which lure users into downloading further malware. Scalable Vector Graphic (.SVG) files are XML-based vector images that support animations and interactivity which means that hackers can embed content like JS to redirect to a compromised website that prompts users to download malicious extensions. These extensions are then being used to downloaded more malware onto the systems such as Locky Ransomware.

Read More

Topics: Adaptive Defense