This new phishing scam can steal your Facebook account

Security researchers have warned of a new email phishing scam that can steal personal information of Facebook users. In its latest report, email security firm Abnormal Security, has revealed that several Facebook users have received emails claiming that their account will be closed if an issue is not resolved immediately. As per the report, fraudsters are mainly trying to access personal information such as email address, password, date of birth and other details of Facebook users who administrate pages of any company. The report suggests that with this phishing scam, fraudsters aim to hijack Facebook pages of numerous firms.
How the Facebook users phishing scam works
According to the report, Fraudsters first send a phishing email claiming to be from ‘The Facebook Team’. The email warns that the user’s account might be disabled or the page might be removed over infringing content.
“We just received a report from a third party that the content you posted infringes or otherwise violates their rights. Accordingly, your account has been repeating these actions, this means your Account might be disabled, and your page might be removed. If you believe these reports are not being made in good faith or are inaccurate, please click the link below:” the email reads.
The message in the email is followed by a link that takes users to a Facebook post. The post then contains another link that takes users to a fraudulent website where they are asked to provide their personal information such as name, email address and password to make an “appeal”.
The report further reveals that the information entered by users is shared to fraudsters who can later take over the account or page and use it for illegal activities.
The report specifically mentions that “Because the threat actors use a valid Facebook URL in the email, it makes the landing page especially convincing and minimizes the chance the target will second-guess the legitimacy of the initial email.”
To stay safe from such phishing attacks, the email security firm suggests that you should always check the address you received an email from. You should also think twice before entering your login information, especially if clicking through a link.

See also  How to Set Up a Ring Doorbell