How Did The Koobface Worm Become Such A Dangerous Weapon?

The rise of online socializing by the average person has made such networks that allow these interactions to take place, prime targets.

And now you add to that, the ability for third party software developers to create their own piece of the infrastructure through the use of applications and you have a bomb ready to explode.

One such bomb that went off was a worm that is called Koobface.

watch out for the koobface worm

This worm has an unusual name but if you reverse it, you will see that the author of the worm has a sick sense of humor.

It is the reverse spelling of the social network Facebook.

The koobface worm has been around for about a year and it is still causing havoc to social networking sites.

The worm was first released upon the users of Facebook and after that it was engineered to go after users of other social networks such as Myspace, Friendster, Hi 5, Bebo, and also Twitter.

The attack vector that the worm would use was a simple low tech one.

It would send a message to people that were the social network friends of the people whose computers were already infected with the worm.

The worm would then ask them a silly question about a video or e-card and then ask the person to click on the video or card to display the message.

It would then pretend to not work and ask the unwitting participant to update their flash player so that they could get the video working.

The victim would then do this, which would lead to the persons computer becoming infected and the chain starting all over again.

Once the Koobface worm was in your computer it would send out a command to poison your local DNS cache.

The poisoned cache would prevent you from going to any security sites that might be able to get the worm off of your computer.

This is a very devious tactic that hackers regularly use to make sure that their victims become helpless.

A quick fix to this problem is to use another computer to download the software that you would need in order to install an updated antivirus program to your system.

This would then clean up all of your files.

If that doesn’t work, and you have the technical know how, you can also take out your hard drive, and then place it on another computer as the slave drive.

The whole time you would have to be extra careful that you do not click on any files that would infect the secondary computer that you installed it on.

After it is installed then run an antivirus scan on the entire drive.

This would make sure that any infection is cleaned out.

The Koobface worm has caused a lot of damage to windows PC’s over the past year.

If you know what to look for, you can help yourself and avoid becoming another victim.

About Lee Munson

Lee's non-technical background allows him to write about internet security in a clear way that is understandable to both IT professionals and people just like you who need simple answers to your security questions.


  1. Great Work lee!


  1. […] Network Security When you are a web site that is as big as Facebook there are bound to be many bugs and vulnerabilities that will slip past […]

  2. […] main pieces of malware that have been delivered so far has been the koobface worm, the autorun worm, and fake antivirus […]

  3. […] companies are reporting everyday about the severity of the infectious viruses that have been found in the groups […]

Speak Your Mind