General10.08.2010

Facebook users beware of hippo-vomiting anaconda

Sophos is warning computer users about a new survey scam that is spreading virally across Facebook.  The attack involves a rogue application that automatically posts status updates and wall posts on affected user profiles with the following message:

“OMG, this is the biggest and scariest snake I have ever seen, check out this video [LINK REMOVED]”

The link takes users to a rogue Facebook application which tricks them into granting permission for the app to access their profile, list of friends and to be allowed to re-post the offending message as a status update and wall post.  Once a user has granted access to the application, they are then directed to complete online surveys with the promise that only then can they see a video entitled “Anaconda Coughs Up An Entire Hippo!”

“This is one of the most bizarre scams seen on Facebook, but its purpose remains familiar – the rogue application sends spam to draw Facebook users into taking these surveys,” says Brett Myroff, CEO of regional Sophos distributor, Sophos South Africa.

“Each time a victim completes a survey, the scammers make some commission.  Even if you don’t take the survey, the rogue application has already abused your Facebook account – changing your status message and spreading an advert for the alleged ‘shocking video’ to your news feed and spreading the scam even further.”

A video demonstrating how Facebook users can delete entries related to the offending application, and how to remove the application itself, is available for journalists to embed from  http://www.youtube.com/watch?v=Dw1oDdPziAY

Sign up to the MyBroadband newsletter