The attack on Facebook through Chrome-extensions

"Consider carefully before you install the extension for Chrome!", - with such appeal addresses the audience Brazilian expert Kaspersky Lab. He found pernicious program, which captures the user account of the social network Facebook, masquerading as Chrome-extension. The most surprising, that a malicious extension (Trojan program Trojan.JS.Agent.bxo) spread through the official Google Chrome Web Store under the name "Adobe Flash Player".



At the moment of checking the expansion of installed nearly a thousand people.

After installation, expansion is able to perform any actions in the profile of the user of Facebook, in accordance with the instructions, which downloads, together with the special script.

The first way, the script спамит on the page the user, inviting users to install this extension.

Next, he tells the browser to put the Like certain pages of the list.

This part of the circuit of monetization, which includes an online shop on sale of "лайков". Their value on the market is about $27 per 1000 pieces.