Beware Phony Facebook Support E-mails
The fake Facebook Support message.
A new malware attack is spreading through Facebook tricking users into downloading malicious software by convincing them that their passwords have been changed.
The scam e-mails have several titles, including "Facebook Support. Your password has been changed," and "Facebook Service. Your account is blocked," reported the security firm Sophos. The messages attempt to lure account holders into believing Facebook has issued them a new password for their safety.
The messages read in part, "Information regarding your account and a new password is attached to the letter. Read this information thoroughly and change the password to complicated one. Thank you for your attention, Facebook Service."
But the attachment is the real problem. Sophos detected a malicious ZIP file and a trojan horse attached to the fraudulent messages.
Sophos researchers said users "should always be extremely suspicious of any unsolicited e-mail which arrives out of the blue, encouraging you to open an attachment."