Pinterest Stumbleupon Whatsapp
Ads by Google

facebook-malware-thumbI’ve seen a lot of Facebook malware and virus infections spreading though my friends list lately, and after publishing a brief Facebook note about how to stay safe, I decided it might be better to cover the topic again for a broader audience.  Facebook Malware and virus infections takes on many forms, but ultimately it involves interaction with a malicious application that can manipulate your account or spam your friends.

Many of these applications appear to be completely harmless – in fact, some are designed specifically to mimic the appearance of legitimate Facebook applications like photo notifications or wall posts.  It’s natural to be curious when somebody tags a photo of you, so your first instinct is to click the link before thinking about where it will be taking you.


The bad stuff happens after you’ve clicked the link.  Typically, you are required to authorize all applications before they can interact with your account, but I have seen one in particular that seemed to automatically approve itself just by clicking on a link.

Once a malicious Facebook malware or virus application has been approved, several things can happen.  Best case scenario: the application will spam your friends and only be a mild nuisance.  Worst case: the malware could steal your personal information, monitor your activity, or spread viruses and trojans to your friends (and even use your identity to do it).

This guide will help you identify Facebook malware so you can avoid infection and will also provide tips on how to remove malware once you’ve been infected.

What To Watch Out For

One example of Facebook malware I’ve recently observed are fake notifications that say somebody has “posted something on your wall” or “tagged a video of you”, which you can see in the image below.  Notice that the icon next to the notification appears strange, but many malicious applications utilize standard notification icons which makes them hard to spot.

Ads by Google

Facebook malware virus

These applications also typically bear unassuming names like “Comments” or “Livefeed” which sound similar enough to features currently used on Facebook that they do not arouse much suspicion.

If you click a notification and are taken to a page asking for access to your profile, the most important thing to remember is never click allow.  Most Facebook malware can only interact with your account if you click the allow button, so only click it if you are absolutely sure you want to use the application.

Facebook malware virus

If you see a suspicious notification and want to verify its legitimacy, visit your profile directly by clicking the Profile button at the top of Facebook rather than clicking the link in the notification.  If you can’t find a corresponding post on the wall, click the X on the false notification and select “Report Spam” immediately.

Facebook malware virus

What To Do If Infected

If you happened to click a strange link on Facebook or accidentally allowed an application that appeared to be malicious, follow these steps right away to revoke its access and protect your account.

  • Click the Applications button in the bottom left corner of Facebook and select Edit Applications.

facebook malware

  • If you have the new version of Facebook, this option can be found under Account (in the top right) then click Application Settings.

facebook malware

Try to locate the application you interacted with.  In my case, it was a fake application called “Comments”, but I’ve seen others listed as “Feed”.  Click the X to the right of the application then click Remove to disable it.

facebook malware

remove!

The application will no longer be able to interact with your profile once you have removed it this way.

Extra Precautions

It doesn’t hurt to follow the steps in the previous section even if you think you haven’t been infected.  Browse through your list of applications that have access to your profile and remove any that you are not currently using.

If you see fake notifications from a friend, you can manually block that application to make sure you aren’t accidentally infected.  To do this, visit the application’s homepage on Facebook (remembering not to click the Allow button) and click Block Application.  This will completely stop the application from interacting with your profile at all.

facebook malware attacks

When you receive a fake notification from a friend, let them know about it right away and have them follow the steps presented in this guide.  The longer they are infected, the more time the malicious application will have to spread itself.

Best Practices

Malicious applications won’t always follow the methods I’ve described in this article, so the best defense you can have is to always be aware of your digital environment.  I’ll leave you with a few tips for staying safe on social networks:

  • Don’t assume links and messages from friends are safe: Malware often takes advantage of the fact that you trust your friends.  Keep an eye on links and messages from friends, and if in doubt, ask them if they actually sent you something.  Most of the time they will have no idea their account has been spamming their friends.
  • Watch the links you click: Fake applications put a lot of effort into looking legitimate, but many of them still carry tell-tale signs of being malicious.  If you’re suspicious of a link, hold your mouse over it and look at the URL in your browser’s status bar.  If the URL looks strange (i.e. long strings of random characters or pointing to a site outside of Facebook), think twice before clicking it.
  • Expand shortened links: Short links are very popular on social networks, making it easier to share URLs.  The downside is that you don’t necessarily know where the link will take you, so consider previewing your short URLs before clicking.
  • If it’s too good to be true, it probably is: If see a link or message on Facebook that claims you can monitor who views your profile or provide other enticing information, there’s a good chance it’s a trap trying to lure you in.
  • Stay updated – Many applications exploit vulnerabilities in your browser or operating system to gain access to your information.  Stay safe by keeping your browser up-to-date and installing operating system updates when they are released.

If you’ve spotted a malicious application or have an experience involving Facebook malware, share it with us in the comments – those experiences can be invaluable for helping others stay safe in the future.  If you have any other tips for staying safe on social networks, let us know!

Image Credit: Gauldo

  1. elisa
    September 11, 2016 at 10:04 am

    please help my fb account to removed the virus please!! thank you

  2. elisa
    September 11, 2016 at 10:02 am

    please help my account to removed the virus as soon as possible. please help me!!! thank you

  3. Maryann Varela
    August 24, 2016 at 2:55 am

    HELP! when I log in to my face book I get this message:

    Secure Your Account
    Hi Mariana, we think your computer is infected with malware, and it's spreading spam through your Facebook account. We'll walk you through a few steps to explain more and scan your computer for malware.
    1
    Learn about malware
    2
    Download malware scanner
    3
    Run scanner
    4
    Login
    .................. DO I DOWNLOAD TH MALWARE SCANNER????? HELP!!!!

    • Miguel
      August 31, 2016 at 3:24 am

      I´m having the same issue. Did you manage a solution??

  4. Roxy
    May 12, 2016 at 10:10 pm

    I've acidentally clicked on a comment about a bad video that I know is a virus.
    What do I have to do now?

  5. AMIT KUMAR
    April 24, 2016 at 1:28 am

    I got the video link message from a decent friend and when I click it s spreading explicit video to my friend circle and immediately I deleted my fb account .

  6. Janice
    March 26, 2016 at 11:06 am

    Hello, can someone give me a tip?
    I've been trying to log into my Facebook account, and there's always this message that flashes. It keeps saying that my computer has malware, and we have to install something called Eset. I keep trying to download it or something, but it never downloads. It said that we could log in, but my news feed never shows. We already have an antivirus so I don't see why we have malware. Please help me, I can't log into my Facebook anymore, what am I gonna do?
    Thanks so much.

    • Beth Chappelle
      April 10, 2016 at 9:31 pm

      Janice have you gotten any help yet? Please respond asap!

  7. tin
    March 19, 2016 at 6:09 am

    hi sir when i was open may account there was a message (your accont affected by malware )it was a virus? .or someone hack me please help ? that was may first accont facebook page ..
    i can log in but there was a malware virus how can i prevent that please help me

  8. ali
    March 1, 2016 at 8:39 pm

    hi! i have some problems with my facebook account. even though i have recently changed my passward (for more than 5 times in a month), some of my notifications are read and also some of the friend requests. i mention that nobody has access to my account and nobody knows my password, also there aren`t any modifications to my profile (i watched the activity log) and none of my friends has complaint about a spam. what is more, somebody added his/her phone number to my account after a minute i have added mine (i erased that number and changed again the password) do you think that i have some viruses on my account and if so, how can i get rid of it because i don`t want to erase my account and create another?

  9. sneha
    February 18, 2016 at 8:41 am

    Hi team, recently i accidentally clicked on a link and it happened to be a spam and sent out auto messages to people on my friend list. After realizing it and then deleting those pages form my account i reported the same to fb. The consequence now is that i am blocked from posting or commenting on any of the groups i used to follow. Infact am not able to post my own wordpress blog link on my own wall now. could u please tell me how to resolve tihs

    • chantall
      April 20, 2016 at 7:28 pm

      Hie Sneha,,can you please tell me how you managed to remove those malicious pages from your account.

  10. rosemarie
    May 13, 2015 at 3:42 am

    Hello there , thank you for sharing :)
    But what should I do if one of my fb friends had sent me a link and without hesitation i clicked the link, it was late when i realize that it is possibly a virus until when I ask her why she sent me that she told me that she didn't send that and she didn't even clicked the link so how could it happened that it was been sent to me?
    My question is that is it right that I deleted my conversation with her so the virus may not spread to my other fb friends? Is it possible that when I delete the message the virus will gone too?
    Help please!

    • karimi
      February 13, 2016 at 11:35 am

      i have the same problem like rosemarie :
      Hello there , thank you for sharing :)
      But what should I do if one of my fb friends had sent me a link and without hesitation i clicked the link, it was late when i realize that it is possibly a virus until when I ask her why she sent me that she told me that she didn’t send that and she didn’t even clicked the link so how could it happened that it was been sent to me?
      My question is that is it right that I deleted my conversation with her so the virus may not spread to my other fb friends? Is it possible that when I delete the message the virus will gone too?
      Help please!

  11. Asma
    May 11, 2015 at 4:31 pm

    Hello
    Thanks for that tips
    My problem: is that my friend through Facebook sent me an undesirable link then turned out to be a malicious program, then I turn to my account where the virus has become Send these links to my friends without my knowledge so
    Please i need help
    Thanks again

  12. gyanu
    February 5, 2015 at 6:52 am

    sir when open my my fb account soi get a message your account affected by malware please solved my problem ?

  13. Nakia Scott
    December 10, 2014 at 1:10 am

    OK I feel like my situation is more of my husband got caught and hes trying to cover up.. Well about one month ago (he says he didnt) but my hubby sent a I miss u and Im not happy message to a old fling,(that he cheated on me with) he said he didnt do it at all! Then this past Sunday he sent the message I miss you again, this time I caught him (kinda) he had already deleted what he wrote but she had responded " I miss you too".. Then when I was gonna confront him about it, it was ALL deleted. Now he is telling me that he NEVER sent her anything, he was hacked or it was a virus or spam, but I dont believe it. So I guess my question is: is that even possible? or does it sound like hes just caught? I need some answers, SHE is not his friend on fb, and nobody knew they use to even mess around except me, him and her? what do I do. Was this a hack? Or total b.s.?!

    • annoyed young man?
      April 21, 2015 at 7:26 pm

      No, it is surly not a hack.
      You caught him two times, it should be enough evidence.
      If you saw "I miss you too" and it is gone now, then that is enough evidence.

      I don't know what you should do, but clearly you can not let your husband cheat on you.
      He has broken his word, and is honourless.

  14. crystal from sarah
    April 25, 2010 at 5:16 am

    Hey, I found this and found it to be interesting.

  15. dwight
    March 25, 2010 at 7:04 am

    Fantastic blog. Reaaally nice. I liked your blog. Check mine to learn how to make 5000 Facebook friends in a week only. It is free. thanks

  16. DABIGRAGU
    February 25, 2010 at 11:13 am

    Let me tell you guys, I'm NOT on Facebook and was a victim of their malware/virus/trojans/rootkits about 2 months ago how?
    I was on a friends address book who has an account on FB.
    I opened up an email he sent me (as did over 200 of his address book contacts)I trusted the source right? Wrong! We all ended up getting over 10 assorted maladies. Several of his contacts ended up spending hundreds of dollars fixing these problems, as you can imagine. One particular trojan worm we picked up went into OUR address books and took off from there, installing Rootkits on our systems as well as all of OUR contacts! We started getting the emails our contacts were sending AND receiving! It's not fun waking up to 3,000 emails in the morning! Some of us have had to inform our credit card companies, etc. to re-issue new CC's as some were suddenly having fraudulent charges on their bills. This has been a nightmare, as you can imagine. I spent 9 solid days with Geekstogo getting this crap off my system. When Facebook was contacted about this problem it was like talking to a brick wall if you know what I mean? They informed my buddy they would look into it, yeah right, he hasn't heard a thing. I might mention I have one of the best Anti-Virus Anti-Malware programs you can buy, they were literally blown away by this intrusion. I've made it clear to all my contacts should they belong to FB, take me off your address book as I will no longer respond or open your email. Needless to say I will never join ANY social networking site.
    Just my experience and 2 cents.

  17. Coyote Weeps
    February 18, 2010 at 9:30 am

    The one I see and don't trust is a "gifting service" for several games. It says "So-and-so has tagged you in a photo" when the pic is only the games logo or game money or something, and says to click or go to the page it wants, to pick up your gift. That's most likely a virus or something, yes?

    • Evan Wondrasek
      February 18, 2010 at 9:34 am

      It might not be a virus (although you can never rule it out) but most likely an underhanded way to make you check out their service, view their ads, or buy some of their virtual goods. Even if it isn't a virus, still unethical.

  18. Don
    February 17, 2010 at 2:47 pm

    Thanks for this - I reposted into my facebook status and referred my friends to this posting today because one of my co-workers had this experience recently. It is great to keep spreading the word on these types of events and best to keep everyone aware. Thanks for the great job!

  19. Lee Alford
    February 13, 2010 at 4:37 pm

    The last couple of days FB people have been receiving a FU Sign and then naked pics of women. Some say it’s a photo app and you should delete the app and delete the post on your wall because it’s a virus. Many have done this and it still comes back. All these post are coming from folks or friends, that 99% did not send the pic or the sign.
    Can a malicious malware/virsue be a person with a compter generated pic? I deleted this person and all the nude pics and the FU sign stopped immediately.
    Am I correct in assuming it came from this friend with a computer generated pic on their profile. Their name is:
    Cecilia-Anitta Bertolini
    Your comments appreciated

  20. Lee Alford
    February 13, 2010 at 4:36 pm

    The last couple of days FB people have been receiving a FU Sign and then naked pics of women. Some say it's a photo app and you should delete the app and delete the post on your wall because it's a virus. Many have done this and it still comes back. All these post are coming from folks or friends, that 99% did not send the pic or the sign.

    Can a malicious malware/virsue be a person with a compter generated pic? I deleted this person and all the nude pics and the FU sign stopped immediately.

    Am I correct in assuming it came from this friend with a computer generated pic on their profile. Their name is:

    Cecilia-Anitta Bertolini

    Your comments appreciated.

    • Evan Wondrasek
      February 15, 2010 at 1:55 pm

      Hi Lee,

      This is definitely possible, I have seen many fake profiles on Facebook. Facebook has added a new feature where you can select "I don't even know this person" when added by a potential spammer, and if the person is displaying offensive material you can click Report and Facebook will look into it.

      I did a search for the user you mentioned and I no longer see him/her on Facebook - probably a spammer and was removed.

  21. Fred
    February 12, 2010 at 2:23 pm

    Checking your applications (as described under "What to do if infected") was a great tip. I don't know if they were malware or not, but I deleted some that I'm not currently using.

    I'll be pointing my closest friends to this tip. Thanks!

  22. Tom Alex
    February 11, 2010 at 1:31 pm

    Hello
    Thanks for that tips

    Wanted one like that for a long time
    I knew a lot of the applications are fake

    Like one i saw recently. "Change the Facebook back to Normal"

    And the app creator says specifically " The app will only work if you invite all your friends to it" Without it the app will not work . And many of my friends believed that.

    Also the one to find out who visited your Profile recently

  23. Eric
    February 11, 2010 at 9:49 am

    I usually look out for weird messages with odd subjects from friends that I do not talk to very often. That is usually a sign of a virus.

Leave a Reply

Your email address will not be published. Required fields are marked *