Phishing attacks are one of the most
common scams on Facebook. The goal of these scams is to obtain your Facebook
user name and password. If successful, the scammers can totally take over
your Facebook account and use it to spread more spam and scams to your friends.
They can also mine everyone in your network for data they can later
use for identity theft or other socially engineered attacks.
Here are some examples of popular phishing schemes on
Facebook:
- Facebook
Lottery –
You’re likely to receive an email stating you’ve won a sum of money. These
can also be advanced fee scams.
- Confirm
Your Account –
Any messages asking you to confirm your account should be viewed with
extreme suspicion. If you receive an email like this, don’t follow any
links. A better option is to log in to Facebook directly.
- Violated
a Policy –
Hacked accounts often send messages posing as ‘Facebook Security.’ If you
encounter one of these scams, you’ll notice that Facebook Security will be
spelled with non-traditional characters. This is done to bypass Facebook’s
filters.
- Photos
& Videos - The scammers attempt
to capitalize on our curious nature. You will receive a message from a
compromised friend’s account asking you to look at this photo or video. A
popular theme is to say the picture is embarrassing or they can’t believe
you did that, etc. Other variants of this scam contain files laden with
malware.
Most all of these scams direct you to
external links to pages designed to look like Facebook. Before logging in to
any site, always verify that you are indeed on the main site. Careless and
unsuspecting users are often fooled by these tricks.
No comments:
Post a Comment