Is Ransomware Creeping Into Facebook, LinkedIn? (Bank Info Security)


Facebook is disputing recent reports that the file-encrypting ransomware known as Locky spread through its instant messaging platform.

The company’s response comes as security firm Check Point alleges that LinkedIn is vulnerable to the same kind of attack that hit Facebook, causing worry that ransomware distributors may have tapped two extremely large pools of potential victims.

Ransomware is malware that encrypts files on a computer and demands money in exchange for the decryption key, usually payable in bitcoin (see Ransomware Result: Free Ticket to Ride in San Francisco).

The story kicked off with a blog post on Nov. 20 from Bart P., a PwC threat intelligence researcher, who spotted a campaign spreading malicious image files through Facebook’s Messenger. The files had a “.svg” suffix, which stands for scalable vector graphics.