New Facebook Phishing Attack Found

By Antone Gonsalves, CRN
January 13, 2012 7:51 PM ET

Security vendor Kaspersky Lab has reported a new phishing attack on Facebook that uses hijacked accounts to pose as the social network's security team and trick users into divulging credit card numbers.

The latest scam is unique because it doesn't just try to get Facebook users to click on a link to a malicious Web site, David Jacoby, a Kaspersky Lab security expert, reported Friday on the SecureList blog. The attackers also use the stolen information to log into the person's account and swap the profile picture with a Facebook logo and change the name to "Facebook Security."

Once the account is compromised, it is used to send out a message to all contacts, warning them that someone has reported a problem with their accounts and they will be turned off unless re-confirmed by the accountholder. Within the message is a link that takes victims to a Web sited dressed to look very similar to a Facebook page.

Once on the Web site, the cyber criminals ask for name, e-mail, password, Webmail system and password to e-mail. With this information, the attackers can compromise more Facebook accounts.

After victims have inputted their personal information, they are asked to provide credit card numbers for verification purposes and to purchase "Facebook credits," as needed. "These scams are just getting more popular and we really recommend not giving out personal information, especially not e-mail, password and credit card information over social medias," Jacoby said. The number of compromised accounts as a result of the scam was not known.

The new scam was reported about a week after more than 45,000 passwords were stolen from Facebook account holders by thieves using Ramnit, a variant of malware that has been found in the networks of corporations and financial institutions.

Israel-based Seculert found the stolen passwords on a remote server and notified the social network, the world's largest with more than 800 million registered users. Most of the private data was taken from Facebook account holders in the United Kingdom and France.

To continue reading this article, please download the CRN Tablet Edition app from the iPad App store.

Related: Videos | Slide Shows | ChannelCasts | Comments

SHARE THIS ARTICLE

More Security

Comments by Vanilla

Recent Articles

	Bit9 Security Survey: Nobody Wants To Be A Headline What's keeping IT security professionals awake at night? These survey results provide insight into perceived threats and vulnerabilities, the effectiveness of security practices, and opinions about disclosure practices.
	Nix That Click: Six Scareware Scams To Watch Out For SpywareRemove.com provides a list of some of the nastiest rogue antispyware programs out there -- designed to trick people into paying to remove malware from their computers.
	Malicious Malware: Six Ways Cybercriminals Beat Security Cybercriminals have become adept at going around the latest security defenses. Here's a list of some of the most innovative malware in use today.
	More Slide Shows