To get at corporate intranets, apparently.
Ramnit is a worm discovered in 2010 that was designed to try and get at online banking sessions, but didn’t have much luck. Apparently, whoever programmed it is trying a new strategy: Stealing your Facebook login and then trying your password out on your company’s network to see what happens.
Oh, and, of course, spam links to all your friends to get the worm out there more. Because it just wouldn’t be a piece of malicious software if it wasn’t incredibly irritating in addition to being utterly evil.
“We suspect that the attackers behind Ramnit are using the stolen credentials to log-in to victims’ Facebook accounts and to transmit malicious links to their friends, thereby magnifying the malware’s spread even further,” (security company) Seculert said. “In addition, cybercriminals are taking advantage of the fact that users tend to use the same password in various web-based services (Facebook, Gmail, Corporate SSL VPN, Outlook Web Access, etc.) to gain remote access to corporate networks.”
In short, you may wanna change your passwords and, once again, don’t click on random links on your Facebook news feed. Especially since even the legit ones just lead to five-year-old cat macros anyway.