Facebook Themed Malware

Not too long ago we began to see a virus campaign shuffling through posing as Facebook notifications. The email states " Because of the measures taken to provide safety to our clients, your password has been changed. You can find your new password in the attached document. Thanks, The Facebook Team" This wasn't from Facebook, but instead from the Bredo botnet attempting to expand its numbers. The past couple of month's virus activities have really been ruled by two major botnets, Bredo and Zeus, and both of them have been relentless. Zeus focuses mainly on phishing and banking trojans and arrives posing as a money related institution such as banks, both foreign and domestic, or government agencies such as the IRS or HMRC. Zeus emails are colorful and mimic the organization they're targeting complete with logos and graphics. Bredo tends to stick with plain text emails pretending to be FedEx, DHL, or as in this case Facebook.