A new campaign of phishing -theft of data such as username and password- social networks began to go viral this week: it targets Facebook users. Under the message “Is it you in this video?” that comes through Facebook Messenger, many users They have already fallen into the trap.
The campaign is designed for mobile device users, as it has a validation chain to determine if a potential victim access the link from a phone.
When the link is accessed from a smartphone, it leads to a phishing site that pretends to be the official Facebook login page, where the user is supposed to login by entering email address and password that you use to access the social network.
If the user does so, their personal access data is already compromised. The fake Facebook site requests first “Verify account information” to be able to view the supposed video.
In fact, if you pay attention, the URL in the browser bar does not correspond to the official one Facebook: This is usually an indicator that it is an apocryphal site.
Phishing on Facebook. Photo Welivesecurity
The funny thing is that it doesn’t happen from desktop devices: PCs or laptops. If the user enters the malicious link from a computer, he is directed to a video and avoids the instance of the theft of sensitive information.
“The ESET Research Laboratory recommends ignoring these types of messages that arrive in chats, even if they come from known contacts, since sometimes the senders have been deceived or their devices have been compromised to propagate. these threats in an automated way”, They explained from the computer security company.
“It is important to notify the owner of the account from which the message is sent so that he knows that they are carrying out this malicious activity impersonating his identity and profile, so it is advisable to check any unusual activity, such as logins from different locations or devices, and close sessions that do not correspond to the user, “they add.
And they suggest: “In case of identifying the activity not recognized by the user, it is convenient to immediately update the compromised passwords and enable additional security measures, such as the double authentication factor and install antimalware solutions on the devices ”.
Phishing on Facebook. Photo Welivesecurity
“Last but not least, it is convenient to notify users who have been affected with this message, to prevent them from becoming victims of phishing campaigns that seek to obtain access to social network accounts and other Internet services. ”, They close from Eset.
The most common scams on Facebook
There are a number of scams that are very common across Facebook. These three top the list:
Beyond regular users, cybercriminals also target companies and brands, specifically targeting your Facebook pages.
The premise of this scam is relatively simple– Scammers often start by impersonating Facebook Support and then message page owners claiming they violated content policy and are charged with “Copyright Violations”.
The message will also contain a link to “officially” contact Facebook Support with an addendum stating that page owners have 24-48 hours to respond or the page / account will be suspended. However, this is all a hoax to get the login credentials to access the page.
If you click on the included link, you will be redirected to a form that you will need to fill out, and then you will be redirected to a fake Facebook login page.
Phishing scams could be considered the mother of all scams, in Internet terms at least, and they are a perennial element that cybercriminals continually use. The main objective of cybercriminals is steal personal information to be used in other criminal activities, ranging from identity theft to the sale of data in the dark web marketplaces.
To this end, the cybercriminal will impersonate Facebook, claiming that someone may have logged into your account or that your password has been reset, or using any other excuse trying to convey a sense of urgency, and will include a link to log into your account. However, the link will direct you to a fake copy of the Facebook login page, which will then collect your login credentials and give them to the scammers access your account.
Fraudulent ads and shopping scams
The ads themselves could be considered the first step in the victim’s journey, where the scammer tries to cajole them into clicking the ad that will redirect them to a fraudulent market by offering products. ridiculously high discounts or that it will seek to steal sensitive data. This often includes luxury items, such as Ray-Ban glasses or other types of benefits.
Whatever the case, once you get to the purchase instance, and especially if you make a purchase, the end result will not be positive. The “fake shop” could collect your personal information and payment details, which could lead to identity fraud and accumulated charges on your credit card.
In case the announcement does not lead to marketplace from Facebook but to a site that requests information, the goal is likely to be for you to enter sensitive information, like your credit card details.