Attention: Fake Facebook Mails

Like banks, Paypal, Twitter and others, Facebook is increasingly subject to phishing scams. How to recognize Phishing and Fake Mails?

Phishing for Facebook

The first goal of the scam is to obtain your login credentials to your Facebook account. Here is the mail I have just received:

1. The sender email address looks suspicious.

2. The receiving address is not an email address registered with Facebook, in fact this address does not exist but comes through based on the catch-all function of the mail box.

3. The Subject line is not capitalized – suspicious.

4. if you pass your mouse over (don’t click!) the update button or over the

5. … “click here” link, you see at the bottom of your frame the actual…

6. …target address. The address is not a facebook address, but some scam sub-domain of a .co.uk domain.

How to deal with Phishing Mails

Turn on phishing filters in your system and security software.

Never click on any link in a suspicious mail! Block sender and delete the mail.

You may report the issue to Facebook providing full headers and eventual source code of the mail.

What this Phishing Scam does

If you follow the link in the mail, you are directed to a fake Facebook Login screen with your email address allready filled in. The password field is blank. If you fill in the password, the cyber criminals get full access to your facebook account.

But there is worse:

Zeus Banking Trojan

A pop-up appears inviting you to download an “update tool” which actually installs “ZeuS banking Trojan”. This Trojan waits to steal your banking data next time you type them in.

Check out the Facebook security page for further info.

Author: Yorgo Nestoridis, Media Marketing & Publishing, Founder of YORGOO Publishing, YORGOO Press and Semiomantics. If you enjoyed reading the above, please consider following future tips and strategies by RSS reader, Email delivery, or Kindle subscription.

This page is wiki editable click here to edit this page.