I just caught news that a widespread phishing scam has hit Facebook today. I think this is spreading quickly as even some of my friends have already been taken advantage of. The end objective of the scam is to steal your login and spam your friends.I’ve got a number of messages in my Facebook inbox with links to “FBAction.net”, a site that displays a fake Facebook login. Enter your details there, and it will spam all your friends with the same message and link. Even more annoying is that you might get locked out of your account for a time until Facebook purges its system of the issue.
There is no malicious payload with the attack, so it seems; no virus or worm is downloaded, it’s simply an enormous irritation for avid Facebook users.
I know that we all get tricked into clicking on links that we shouldn’t from time to time (don’t you feel so foolish when you’ve been taken advantage of?), but please take note and remember: don’t enter your Facebook password if the URL is not Facebook.com, and contact Facebook if you’re no longer able to access your account.
5 comments
Cool, thanks for this!
May 5, 2009 at 4:26 PMIs this threat still active?
May 19, 2009 at 4:05 PMStill active, I just saw some spam that matches the threat description today...
May 21, 2009 at 11:46 AMUpdate: another Facebook scam has been uncovered. Read about it here.
May 21, 2009 at 6:33 PMFacebook needs to work on these soft security issues. I don't need to be worrying about phishing scams like this.
May 31, 2009 at 12:15 PMPost a Comment