Recently, security researchers at Check Point revealed that a version of known ransom malware known as Locky used Facebook and LinkedIn images to attack your computer. However, Facebook released a statement claiming that after an investigation there is no basis to Chek Point’s claim. Instead, the security issue was caused by several bad Chrome extensions which were already blocked by Facebook.
Before Facebook or LinkedIn had a chance to investigate the claims of the Check Point researchers regarding the vulnerabilities the images on their sites pose to users, news sites already started to sound the unwarranted alarm to users.
The news spread fast because of the innovative way the reported ransomware attacked your PC. Usually, this type of malware uses a vulnerability exploit found in browsers or in operating systems, or most people get it by clicking a corrupted link. The new ransomware variant of Locky claimed that it could attack your computer just by visiting Facebook of LinkedIn.
Check Point reported that the malware was taking advantage of flaws in how images on Facebook and LinkedIn are being processed to infect your computer. Basically, the malware makes your browser download an image file with a hidden code which starts hijacking your computer as soon as you open it. If you do, then all your files will be encrypted and be held for ransom until you pay up, as per the standard behavior of ransomware.
Check Point claimed that they informed Facebook about the findings of their investigation back in September and they implied that the company did not take any measures to address the exploit which they thought was real.
Engadget was one of the many tech news sites that ran the initial story as was reported by Check Point. However, the editors did contact both Facebook and LinkedIn to find out more information and determine what was their own stance on the issue. In response, a Facebook spokesperson denied the existence of such a vulnerability and said that the issue was only caused by several “bad Chrome extensions” which they already started blocking several days before the news broke.
What do you think about this situation? Are you willing to trust Facebook on this issue?
Image source: Pixabay