There’s an email purporting to be from Facebook, claims that the users password was changed due to security reasons. This attack was originally reported by the security firm Sophos.Facebook Password Change Email Scam

The email messages come in a variety of subject lines including “Facebook Service”, “Facebook Support”, “Your password has been changed”, and “Your account is blocked.” The email comes with a malicious attachment which carries a Trojan horse.

Sophos products detect the attached ZIP file as Mal/BredoZp-B, and the Trojan horse contained within as Troj/Agent-PLG.

According to Sophos, It’s possible that the attackers are attempting to exploit the problems many female Facebook users had this week when the social network disabled many accounts by accident.

If you receive any email that has the subjects lines indicated above, please delete it immediately.

Facebook will not change passwords without the request by the account holder.