Just when we had rumors spreading on Facebook charges not long ago, there is another IT security attack on Facebook again using the fake Facebook Security Page. This round of attack apparently is going to be a more serious attack as this attack will result in stealing Facebook user’s password. The previous one, it was just generating rubbish on the site to create some sort of Human-Worm. What the attacker do this time was to send phishing messages to the users and lure them to the fake Facebook Security page. The message goes this way:
The message started by saying that your accounts will be suspended due to some violation of the terms and condition. Commonly, if they direct ask the users to click on certain link might not possibly work. Hence they pretend that they have sort of make some mistake on the second paragraph to lure the users to click on the link. They also give the timeline as well because their fake Facebook Security page might not last long as the legitimate one is going to find out soon enough. As long as the user clicks on those link, it is going to redirect them to a page where it needs an array of their information as shown below:
The Information That The Fake Facebook Security Seeks
What happens after you confirm your details is that your details will be sent to the attacker. The attacker will then be able to login into your Facebook account with the details that you had just provided. If you happen to have a friend who had just been attacked with this phishing attack, do remind them to change their account password. If you read carefully on the URL, there is some spelling mistake on the word ‘suport’ instead of ‘support’. There is another version of scam though which looks like this:
The other scam claims that you are using some unknown proxy. The trick of phishing attack remains the same where they will use a link to redirect you to a fake page. However, they key here is to check whether the particular Facebook Security page is legitimate. The fake page looks like this:
Fake Facebook Security Page
Notice that the name of the page is not a standard ASCII character. It is some non-standard character which is used to stay away from the detection of Facebook and at the same time, able to perform the usual phishing. If you require any necessary guide on phishing attack, you can always refer to how to detect and combat phishing attack.
Also, don’t forget to join the IT Security Column Facebook page to keep you updated on the latest IT security news.