Facebook malware tricks users with charity donation requests

August 19, 2012 by  
Filed under Every thing you Need to Know

Tineka Smith Published 23 July 2012

Security firm, Trusteer, reveals that cyber criminals are collecting credit card data from Facebook users by posing as children charities.

The cybercriminals use a Citadel Trojan that displays pop-ups encouraging users to donate money to children in need of humanitarian aid.In order to donate money, Facebook users are asked to fill in their credit card details. this particular malware is able to attack unsuspecting users based on their country and language settings.the malware allows users to see the fake charity donation requests in five different languages which include English, Italian, Spanish, German and Dutch.

Trusteer notes that the criminals do not use the same text for each language and have customised each attack to fit a user’s country or region.In the English version of the attack, scammers ask users to make a $1 donation for impoverished Haitian children. the scammers then ask for users to fill out a form detailing their name, card number, expiration date, CVV and even their security password.In the Dutch version of the attack the cyber criminals have even pretended to be part of the internationally- known charity, Save the Children. Amit Klein, CTO of Trusteer says the method used by the scammers is well designed.this attack illustrates the continuing customization of financial malware and harvesting of credit card data from the global base of Facebook users", says Klein. "using children’s charities as a scam makes this attack believable and effective. meanwhile, the one dollar donation amount is low enough that virtually anyone can contribute if they choose. this is a well-designed method for stealing credit and debit card data on a massive scale."

Speak Your Mind

Tell us what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!