According to this warning message, which is currently moving rapidly around Facebook, users should avoid installing an app that “adds a pink tinge to your profile picture” because the app contains a “keylogger malware” that could steal passwords and bank details.
According to the message, installing the app provided a way of collecting money for cancer.
The warning claims that the information was released in a statement by Australian TV news channel, ABC News 24.
However, at this point, I can find no credible evidence that supports the claims in the message. At the time of writing, there was no information about such a security threat on the ABC News 24 website, or on the station’s news headlines video. Nor could I find reports about the issue on any other credible news outlet.
Australia’s CUA bank recently ran a breast cancer fund-raising campaign that involved turning your profile pink via CUA’s “pink my profile” app. CUA promised to donate $1 to the National Breast Cancer Foundation for each installation of the app, up to a total of $15000.
This goal has now been reached. The CUA campaign was completely legitimate and I have seen no believable reports that indicate that the app contains any sort of malware.
Moreover, the claim that “Facebook allows keylogger in its apps to aid predictive search algorithms” is highly suspect. Again, there are no credible reports that support such a claim. the inclusion of keyloggers – even for innocent purposes – would have certainly raised a great deal of discussion among security conscious Internet users.
In short, this supposed virus warning lacks credibility and, at this point, its claims remain unverified.
Source Hoax Slayer
Have you noticed the profile pics of some of your Facebook friends have acquired a pink tinge?
Rumours have hit the social networking site that the Facebook app that turns your profile picture pink carries “keylogger malware” that can spy on your keypresses, and steal your passwords – not just from Facebook, but from online banks you may log into as well.
One warning reads as follows:
ABC News 24 just released a statement about a virus on facebook app that adds a pink tinge to your profile picture to `raise money for cancer`.
Be aware this fake third-party app installs a virus on the machine you used to access the app. Apparently its a keylogger malware that searches for bank details and passwords etc. Facebook allows keylogger in its apps to aid predictive search algorithms, and therefore the virus hasnt been picked up.
Keep a look out for any of your friends who may have fallen victim to this app. Apparently, they should be easily identifiable with a pink tinge to their profile picture.
However, the warning is balderdash. ABC News has released no such warning, the app is not malicious and we have seen no evidence that it contains a keylogger. The truth is that your Facebook friends are doing something positive – helping raise money and awareness for the fight against breast cancer.
Australian bank CUA raises funds every October for Breast Cancer Awareness Month, and this year decided to share an app that would change users’ profile pictures pink to show that they were supporting the campaign.
Remember to always get your computer security advice from a computer security company. Friends may be well-intentioned in passing on warnings, but it’s always good to check your facts before forwarding them any further.
If you want to learn about the real threats on Facebook you should join the Sophos Facebook page, where we’ll keep you up-to-date on the latest rogue applications, scams and malware attacks threatening social network users.
Jamie Phelan
October 25, 2011 at 11:33 pm
If the claims are unsubstantiated why would you viralize the hoax by posting an article about it? People are misinterpreting the fact that this is an obvious hoax and sharing this article. As an information security professional, I can tell you that there is no chance that a facebook app could install a keylogger on your machine.
The WHOot
October 25, 2011 at 11:44 pm
Jamie if you read the article it clearly states it’s a hoax. We have simply shared an article informing people that this is being circulated on the net presently. Did you read the article?
Jamie Phelan
October 26, 2011 at 1:52 am
Jo – I read the article, a lot of people are seeing this and misinterpreting it because they’re only looking at the preview facebook gives when you share the artcle which doesn’t mention it’s a hoax, and sharing it, making more people only read the preview and so on and so on.
this is the preview facebook gives:
“According to this warning message, which is currently moving rapidly around Facebook, users should avoid installing an app that “adds a pink tinge to your profile picture” because the app contains a “keylogger malware” that could steal passwords and bank details. According to the message, installing…”
joe
October 26, 2011 at 12:16 am
also read – http://www.thatsnonsense.com/view.php?id=1417
The WhOot
October 26, 2011 at 12:29 am
cheers for sharing Joe ..
Greg
October 26, 2011 at 2:34 am
I agree with Jamie, the preview along with the title really seems to be the opposite of the article’s actual message if you just read them alone. You should really change the title to make it clear that the claim about CUA’s campaign being a hoax is a hoax, not that the campaign is a hoax.
The WHoot
October 26, 2011 at 7:51 am
good idea Greg, we will change the title -:)