You are invited to Log in or Register a free Frihost Account!

Victim of some Facebook Phishing

Today I became a victim of some Facebook credentials phishing. I received an instant message from one of my Facebook contacts containing a video. When trying to play the video I got prompted to enter my Facebook credentials. After having done this ... my credentials went into the wrong hands. And it became obvious that this video was not from my contact.
This happened on my smartphone. I believe on a PC this never would have happened to me because there are many means to cross-check urls and links and other things to detect a phishing. On a mobile device it is much harder. The login screen really looked authentic.
The result was: many dubious videos sent to all my contacts. In the meantime Facebook right away locked my account because they detect suspicious behavior. I also ( too late ) read the warning from my contact in Facebook from whom I had received the malicious message that her account had been compromised.
I unlocked my Facebook account by setting a new password and acknowledging a confirmation code; Facebook did a quiet good job to detect the problem and take me through steps to resolve. I then posted warning on my Facebook page and also sent warning messages to most of my contacts; luckily I have less than 100 Laughing
Interestingly my Chrome browser on one of my laptops later on insisted in downloading a Malicious Software Removal tool from Facebook, which right away was blocked by my virus scanner. This happened while Facebook was working fine in my Firefox browser. I found this very helpful hint here ( see comment # 3 in this lengthy article ) how to overcome this strange means and enable Facebook again in my Chrome browser.

6 blog comments below

Wow I'm sorry this happened to you Amagard - thanks for sharing the experience. Just goes to show it can happen to high-tech people too - all it takes is just that one click. I'm glad you also mention that phones may be easier to get one to click than desktops - that's a good note to make. I hate Facebook, but am impressed with how they helped you out of the problem. On the other hand, I'm almost certain that this is an enormous problem for Facebook, like they must be pros through great experience with mischief makers.
deanhills on Fri Aug 04, 2017 8:01 am
I too, am sorry to hear about your experience, amagard.
standready on Fri Aug 04, 2017 11:01 pm
Much worse things can happen to you in life Wink
On the plus side: got in touch with many of my contacts on that day after a long time.
Most people were smart enough to not click on that video and I heard from many they have gone through a similar experience in the past, either on Facebook or Twitter or elsewhere.
amagard on Mon Aug 07, 2017 2:19 pm
Glad to hear you're still smiling, and that at least some good came out of it, as well as the hazards and embarrassment.

Apparently the bad guys were just spreading their message at that point, and hadn't yet done much permanent damage. There is a real risk to keeping confidential things in a Facebook or similar account, depending on it only being available to appropriate contacts. It seems likely the criminals got stopped before they had time to snoop through the majority of the accounts they commandeered.
SonLight on Thu Aug 10, 2017 9:42 pm
Here is a recent security warning for facebook users on describing how through phishing bad guys gain control over facebook accounts to then spread malicious software: "New multi platform malware/adware spreading via Facebook Messenger"
The example shown here is about downloading a VideoPlayerSetup_blabla.exe on a Windows or Mac computer. Latest at that point when this dialog pops up users should get distrustful.

As I said above: on a desktop or laptop computer it is easier to spot those risks. May be the phishing I became a victim of was a similar attack but basically didn't work to its full extent on a mobile platform.
amagard on Fri Aug 25, 2017 9:22 am
Looks like one should be suspicious of anything with dot.exe in it and particularly if it claims it's protecting one's computer. Can imagine in the community where I live and where most are on the Facebook circuit and not as computer literate, they'd be sitting ducks.
deanhills on Fri Aug 25, 2017 10:53 pm

© 2005-2011 Frihost, forums powered by phpBB.