Think twice before changing your password in Facebook, for a virus touting itself as facebook password reset confirmation email is doing the rounds on email.
One wrong click on this email can land you in great trouble.
Delhi-based cyber crime expert Vivek Vohra tells a daily, "Bredolab attaches a file that purports to contain a new password. That file is a Trojan horse that will download a host of nasty files from the Web."
Upon clicking the mail, your gmail and facebook account is diabled and it shows wrong password every time you try to log in.
Talking about the new ways of attacking innocent users, Vohra said, "Cyber crooks are coming up with new viruses to steal email id and all the personal details of netizens. It is always suggested to check every link and attachment before opening them. Unlike the Facebook phishing attacks last year, when bad links were distributed through hacked user accounts, now the name of social networking sites are being used."
The Facebook team confirms that the spoof email did not originate from the social networking site. Facebook said that this virus is being distributed through email and they never send users a new password as an attachment.
"We're educating users on how to detect this through the Facebook Security Page," the company blog post added.
"To avoid getting the virus, do not open a "Password Reset Confirmation E-mail" if you didn't request a password from Facebook," the cyber expert said.