Koobface returned to the attack target still being a Facebook user
Once infected, the worm sends a message with the same content to all of the victim's contacts. Even the Koobface creators have added a feature to prevent security software trying to resist the operation of this worm. Malicious links infect as soon as the user clicks on the link, and then only receives a content page 'Page not found' (The page cannot be found).
According to ESET, this type of attack makes it more difficult for security researchers to analyze different versions of malicious code.
To protect the device from Koobface, ESET recommends that users should not trust new messages or any strangers sent to you via social networks like Facebook. Make sure your antivirus software version is always up to date with the database and works in real time.
Koobface first appeared in 2008, then continuously appeared over time with new variants that the main attack object is to infect users of social networks Facebook.
Deep use of a typical strategy is to send messages to Facebook users' contacts to encourage them to click on a link to another video or file. However, it will launch executable code that infects their computer.