In the last two days our lab has detected a flood of email messages that seem to have been sent by the Facebook team urging users to submit a new account agreement. We’ve seen around 16,000 since yesterday.

The subject of the message is UPDATED ACCOUNT AGREEMENT and the attached file is called AGREEMENT.ZIP.

The message is like the following:

Facebook_agreement_en

Users are required to submit a new account agreement before a certain date. If not, their Facebook account will be restricted. The message also contains detailed instructions on how to do it.

We’ve seen this type of menacing messages other times before, for example with  Hotmail or MSN Messenger accounts. But now that Facebook is so popular and is continuously undergoing changes and updates, this is a good way to trick users.

Perhaps many people think it’s not true but, just in case, let’s try and see what happens…

And what happens is that if you follow the instructions given in the email and run the file “agreement.exe”, you’ll be installing the rogue antivirus SecurityTool in your computer.

This program not only displays annoying warning infection messages like many others, but also prevents the executable files from being run and hides the icons of the Desktop, not allowing you to work with the computer.

So, don’t trust any message like this and be sure that if the Facebook team wants to inform users of any changes or update that require their collaboration, they’ll be published in your Facebook account.