Fake Facebook “Pages you might like” emails deliver malware

[Free CISSP Exam Study Guide] Get expert advice that will help you pass the CISSP exam: sample questions, summaries of all 8 CISSP domains and more!

Fake Facebook emails urging users to review some Pages they might like are hitting inboxes around the world, warns ThreatTrack.

Sporting “Hi [name], here are some Pages you may like” in the subject line and photos of the bogus pages in the email body, the email is peppered with links that supposedly take the victim to the pages in question:

Unfortunately, clicking on any of them will actually take them to random legitimate but compromised sites hosting the Blackhole exploit kit and delivering malware, or make them download Trojans directly.

The only good news in this last version of events is that users must run the downloaded malicious file themselves.