Last time when I logged into my Facebook account, there were three messages waiting for me. Just like everytime, I tried opening them and found all of them contained links that point to the same domain name(IPIC-UK.COM). Well that happens, anything goes viral and all my app loving friends out on Facebook just start using it. But the pattern was a little weird this time.
1. The app seem to send messages automatically. No messages, no hello text, only an URL. Well that can be a poorly planned app promotion. Maybe not. Most general users just do not care what the app does in the background and even if it prompts the user to send friends a message with an option to customize it, people just do not have enough time to waste. So they simply hit send to proceed.
2. When I tried opening the domain(IPIC-UK.COM) in question using Chrome Incognito, there were no sign of phishing or no alert were thrown by Chrome as it happens in case of domains marked potentially unsafe. Next, when I hovered the mouse on the Start button on the website, it showed a URL which is HTTP://IPIC-UK.COM/SELECTMETHOD, but as I clicked it, it was redirected and an image was downloaded as a compressed ZIP file. That was enough to raise some doubt and Chrome also pointed it as potentially dangerous.
I tried Googling it and also searching about it on some relevant and authentic sources and found nothing with that name. Not sure if this is a virus, however, my instincts say it is. No known solutions, even worse, no strong report is yet to show up. However, there was this single report(refer screenshot above) on Facebook Help forum that points out this to be a bug and behaving weirdly. The infected profiles send similar messages to their friend profiles on Facebook. Now if that’s the case, then it is definitely something to avoid. So do not open any messages that has a link to that domain name. If you are already infected, sorry, but there’s no known solution until now. But you can use the following, maybe, that will help a little,
1. Scan your PC for viruses.
2. Log in to Facebook and end all active sessions, follow this link for a walk-through.
3. Change your Facebook password.
Facebook has previous history of similar scams and tons of profiles have been affected. This post is intended to caution people until there’s an word from an impeccable source, that there’s nothing harmful in it. Spread the word so no more mess is created.