One of the most prevalent piece of malware targeting consumers in the last week is an e-mail that supposed to be sent from facebook. This e-mail says that your password has been reset and you need to open the attachment in order to retrieve your password. The attachment contains a password stealer that can potentially access any username and password combination used on the computer, not just the login credentials for Facebook.
McAfee Labs tried to warn people about this scam by writing a post in a blog on last Wednesday. Nevertheless, McAfee estimates that over tens of millions of malicious e-mails have been sent out across Europe, the U.S. and Asia.
As you can see from the above image, there are enough clues to suspect that something weird is going on. For instance, why
the new password is contained in a attachment and not in the body of the e-mail, the suspicious style and some expressions of the message such as “your Facebook”. If facebook realy wanted to reset your password, it may send you a link that you have to visit.
Check more carefully your inbox.
References:
News.cnet.com
Register
