Few weeks before, a fake video titled “Candid Camera Prank [HQ]” and messages which said “this is without doubt the sexiest video ever! 
” were doing the rounds in facebook. Many users were bombarded with such messages on their wall or friend’s profiles. The post is accompanied by a picture which appears as a movie thumbnail picture of a woman with a short skirt on an exercise bicycle.
When you click on the video, Facebook user will be required to allow the application the permission to access user’s public information, post to user’s wall, and access to user data any time. Once permission is granted, a “Thanks for the confirmation! You can continue to the video now” message is display. However, when user clicks on Continue button to view the video, user is prompted to update the out-of-date FLV player.
User is then instructed to download and install a file named VLCsetup.exe. This VLC setp file is ofcourse fake which attempts to fool user to believe that it’s installing VLC (VideoLAN) player and it infects your PC with a malware or adware called Hotbar.
Here’s a video demo by WebSense on what’s happening when users click on the Sexiest Video Ever link.
Those who see the “Sexiest Video Ever” video on their facebook walls, do not click on the links or allow the Facebook application to run.
For users who have installed the Hotbar, most anti-virus software can remove and clean the Hotbar. Just scan the computer with up-to-date anti-virus. The Hotbar may add an entry in Add and Remove Programs or Programs and Features of Control Panel, Uninstall that. In addition, it’s also recommended to change the password for Facebook.
