Facebook users who rely on email alerts to know when and what their friends do risk getting their computers infected with malware. That’s because cybercriminals are relying on fake notifications to spread a nasty Trojan.
Bearing the subject “Your friend added a new photo with you to the album,” the emails are designed to trick recipients into opening the attached file which allegedly contains a photo, Sophos experts inform
“One of Your Friends added a new photo with you to the album. You are receiving this email because you've been listed as a close friend. View photo with you in the attachment,” the messages read.
In reality, the attachment is not a picture, but a piece of malware identified as Troj/Agent-XNN.
Facebook customers should be aware by now that the social media site never sends the pictures posted online as attachments via email. That’s why users are always advised to beware of shady-looking notifications.