– Phishers Used Facebook to Penetrate Financial Firm’s Computer System (March 4, 2010)
Phishers used Facebook to burrow their way into the network of a large US financial company last year.
The attackers took control of one employee’s Facebook account and using information culled from that individual’s friends’ profiles, sent what appeared to be personal messages to several other company employees about pictures taken at a company picnic.
The phishers learned of the picnic through postings on the hijacked account. When one of the other employees received a message asking her to click on a link that would allow her to view the pictures, her computer became infected with keystroke logging malware.
When that employee logged in to a VPN account to access the company network, the attackers were able to capture the necessary information to gain access to that network. The intruders managed to get deeper into the network and take control of two servers before they were detected.
Original Story: http://lastwatchdog.com/facebook-phishers-breached-corporate-network/
Use a different hard password for each publicly accessible website service you use and be suspicious of links in e-mail even if they appear to be from friends.
Popularity: 13% [?]
