Facebook Users Under Attack
Thursday, October 29 2009 @ 06:46 PM Eastern Daylight Time
Contributed by: Michael Brusletten
Views: 1,453
Facebook users under attack? It would appear that the three million users that Facebook has under its skin, are serpentinely being duped into clicking on the link found in an email being sent to them. In this mass mailing, users are asked to update their account information before they are allowed to login, by clicking on the link provided in the email.
Received: from 20150057028.user.veloxzone.com.br ([201.50.57.28]) by box595.bluehost.com with esmtp (Exim 4.69) (envelope-from <noiselessnesszy9@spdv.net>) id 1N3Xgm-0007zV-AK for user-not-available@example.net; Thu, 29 Oct 2009 10:17:39 -0600 Received: from 201.50.57.28 by ASPMX3.GOOGLEMAIL.COM; Thu, 29 Oct 2009 14:16:00 -0300 From: "Facebook" <update+fpvpabjrs@facebookmail.com> To: <user-not-available@example.net> Subject: new login system Date: Thu, 29 Oct 2009 14:16:00 -0300 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0006_01CA58B3.1AC52B40" X-Mailer: Microsoft Office Outlook, Build 11.0.6353 Thread-Index: Aca6Q08BF6371ZZLJF2B69MGK9160K== X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 Message-ID: <000d01ca58b3$1ac52b40$6400a8c0@noiselessnesszy9>
|
When ever a user does click on this link, they are brought to a look alike site that asks you to change or verify your information on the page. When you do this, you are confronted with a login box simular to the Facebook login and are asked to login. When you do, information is seemlessly copied over to the criminals database and you are presented with your actual account information. You then have the opportunity to change or verify whatever info you want to. Then you must save it. You are then asked to logoff and then log back in to make the changes take affect. Mean while during that whole process, the criminals have received a copy of your entire profile and information within it, including your login and new password. The criminals are now able to immediately login with your credentials and wreck havoc with your account and do what ever they want, not to mention potential identiy theft if you have enough correct information in your account..
What ever you do, if you see a message like this. DELETE IT IMMEDIATELY!!! Do not click on any of the links with in it. Instead, if you are at all worried about something like this, delete the email and then open your browser and type in www.facebook.com by hand and login that way and check your account. Always check the address bar and status bar below to see what you are clicking on.
Please leave your comments and let us know if you have seen this or have been affected by this scam. Leave your story, and if we get allot of comments, we will open a special forum just for this.
What's Related