An IM-based spam campaign has hit the Facebook website.

 

Spam is being accessed via the popular social-engineering site when users click on a link that promises them a ‘hot date.' The link reproduces the Facebook site and collects the victim's log-in credentials by using a php script.

 

Vlad Valceanu, head of BitDefender's anti-spam research, said: “Users should be cautious of any link sent to them via IM or email. Along with paying close attention to website names and likes, it is important for computer users to have an IT security solution installed onto their systems in order to avoid future attacks.”

 

BitDefender has warned that phishers could exploit user details to harvest e-mail addresses, retrieve other contact details stored in accounts or post spam messages or malware disguised behind banner advertising.