Facebook users who receive an unsolicited message claiming someone has left an offensive comment against them on their wall should think twice before responding.
The unsolicited mail may be bait that can lead to a malware attack using the Blackhole exploit kit, security vendor Sophos said.
"Facebook users are warned to be on their guard against unsolicited emails they might receive suggesting that someone has left an offensive comment about them on their wall," Sophos' Graham Cluley said in a blog post.
Cluley said the emails may indicate someone left a nasty comment on the user's wall post, and would urge the victim to see the comment thread, or reply to the email.
But he said a check of address on the "From" field has a slight misspelling of Facebook: firstname.lastname@example.org.
Still, he said the danger is there that some users will be tricked into clicking on the link.
Clicking on the link will take the user to a website hosting a malicious iFrame script detected by Sophos as Mal/Iframe-W.
"Within seconds, your computer will find itself put at risk of malware infection via the notorious Blackhole exploit kit," Cluley said.
"You may not notice, however, as the cybercriminals have redirected your web browser to a Facebook page which acts as a smokescreen to the attack," he added.
Cluley suggested that Facebook users make sure they run up-to-date anti-virus software and keep your computers patched against the latest vulnerabilities. — TJD, GMA News