Deja vu: New phishing scam hits Facebook
A new phishing scam is hitting Facebook users on Thursday that, like others in recent weeks, sends them to a Web site designed to steal their log-in information.
Facebook users reportedly are receiving messages from friends with a subject line of "Hello" and a prompt to check out "areps.at" or another one ending in .at
If you log in to the site, it steals your e-mail and password, logs you into Facebook and automatically changes your password and sends the same message to all your Facebook friends, according to the All Facebook blog.
"Whoever is behind the scam has been steadily amassing a large number of e-mail addresses and passwords over the past few weeks," the blog says. "Some days as much as three scams will spread throughout the site (possibly even more). Facebook rapidly shuts down all references to the site but by then the scam has spread to thousands of users."
The phishing URLs were blocked by Firefox and flagged as a "Web Forgery" as of 9:50 a.m. PDT. One of them was still up and downloading malware on Internet Explorer.
A Facebook spokesman did not immediately return a call and e-mails seeking comment.
Separately, some Facebook users reported difficulty accessing the site on Thursday morning. It was unclear whether the connectivity issues were related to the phishing scam."
No comments:
Post a Comment