Facebook photo notification attachment contains malware

At Get Safe Online we always advise caution about opening unsolicited email attachments, and here's a new one aimed at Facebook users. A malicious Trojan horse is posing as a Facebook photo notification. The scam email contains an attachment which is a zip file containing malware designed to allow hackers to gain control over your Windows computer. The email reads as follows:

Subject: Your friend added a new photo with you to the album

Attached file: New_Photo_With_You_on_Facebook_PHOTOID[random].zip

Message body:


One of Your Friends added a new photo with you to the album.

You are receiving this email because you've been listed as a close friend.

[View photo with you in the attachment]

Do not open the attached ZIP file as the malware will infect your computer.

If you receive an email from a Facebook 'friend' telling you that someone has added a new photo of you – always check on Facebook directly if you are not sure whether or not it is legitimate.

For Get Safe Online's information and advice about spam and scam emails, click here.

Written by

In partnership with