. home.aspx



Chrome Extension Malware Targets Facebook

May 11, 2018 / Kacy Zurkus

A new malware campaign detected by Radware's threat research group is reported to be proliferating through fraudulent Facebook links. According to the research of Adi Raff and Yuval Shapira, the malware infects users by abusing a Google Chrome extension, the Nigelify application. Hence the malware has been dubbed Nigelthorn.  "The original Nigelify application replaces pictures to 'Nigel Thornberry' and is responsible for a large portion of the observed infections," the researchers wrote in a Radware blog post. The malware has been known since March 2018. Malicious actors have socially engineered links on Facebook so that when users click on the link, they are redirected to a fake YouTube page. Rather than watching the video they expect to see, they are asked to install the dubious extension. The extension then executes a malicious JavaScript code, turning the victim's computer into part of a botnet. The Hacker News reported that the malware has infected ...