TROJ_REDIR.CU
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Ranking: | 16,361 |
| Threat Level: | 90 % (High) |
| Infected Computers: | 1,005 |
| First Seen: | December 27, 2011 |
| Last Seen: | June 25, 2023 |
| OS(es) Affected: | Windows |
Social engineering attacks that take advantage of the holiday season are not uncommon. In fact, as the year ends, ESG security researchers have been flooded with a variety of dangerous malware infections that take advantage of Christmas in one way or another. While most of these kinds of holiday-themed malware infections take the form of phishing emails and fraudulent email attachments that take advantage of the increased shopping and travel of the season, TROJ_REDIR.CU takes a different approach. The TROJ_REDIR.CU malware infection is spread through a Facebook campaign which advertises a non-existent 'Christmas theme' for your Facebook wall and page. This campaign can be quite effective at attracting victims, especially because Facebook has attracted millions of inexperienced computer users that rarely go online for other reasons than to use this social network. Preying on the inexperienced, TROJ_REDIR.CU can quickly infect a computer system and then use the victim's Facebook account to spread in search of other potential victims.
What Happens When You 'Like' TROJ_REDIR.CU on Facebook?
The TROJ_REDIR.CU infection starts when the victim clicks on the 'Like' button on the 'Christmas theme' link mentioned above. Doing this takes the victim to a website which prompts the victim to download and install a plugin with the misleading name 'Free Cheesecake Factory Coupons.' However, this 'plugin' will not give the victim a Christmas theme for their Facebook wall. Rather, it will fill up the victim's Facebook wall with a status reading: Get Christmas Theme for FB on – - >>0< < – - free Christmas Theme for all FB users!!. Just Install this amazing new fb Christmas new look and change your profile looks show it to your friends. The TROJ_REDIR.CU plugin tags the victim's Facebook friends in this status, ensuring that it will appear in the victim's friend's walls and Timeline.
Do Not Become a Victim of TROJ_REDIR.CU
The TROJ_REDIR.CU plugin can affect all Internet browsers and is particularly dangerous because of the way it will try to infect all of your Facebook friends. This gives it an almost plague-like quality that allows TROJ_REDIR.CU to spread quickly from one computer to the other. ESG security researchers recommend being especially careful about holiday malware scams involving special holiday themes on social networks or holiday-themed unsolicited email messages containing attached files or embedded links.
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.