The IT security company ESET alerts about a scam campaign or phishing, It is trying to get Facebook account login credentials. This fraud spreads through Messenger, by means of a message that comes from a contact and asks to “like” a supposed photograph for an apparent “good cause”.
The message includes a link with a shortened URL that refers to a supposed image and requests that the potential victim agrees to put “I like”. However, to perform this action it is required to log into a fake page that copies the image from the official Facebook site.
“As in several campaigns, the phishing use the features of a secure site; that is, it uses a security certificate, handles HTTPS and has a security padlock. Further, the site uses an image identical in appearance to that of the official Facebook site, so the user could be deceived, especially if the message comes from a known contact. The objective of this campaign is to steal Facebook access credentials ”, details Camilo Gutiérrez Amaya, head of the ESET Latin America Laboratory.
The main clue to identify that it is a hoax is the URL, which does not correspond directly to that of Facebook, although some words are added to the domain to make believe that it is a legitimate site.
ESET indicates that if the user falls for the deception and enters his access credentials, he is simply directed to the official Facebook site, alluding to an apparent authentication error, although his data has already been captured by the fake site.
“It should be noted that the account from which the message comes has been previously compromised and is used to spread deception with the purpose of obtaining access credentials from other accounts. Therefore – even if the link comes from an acquaintance or trusted contact – it is necessary to review the security parameters to avoid falling into a deception. It is also convenient to distrust these types of messages and avoid spreading them, so that fewer people are compromised, ”adds Gutiérrez.
The expert recommends that in case you have been deceivedIt is a good idea to update compromised passwords and enable additional security measures such as double factor authentication.
Other recommendations to avoid being deceived by phishing:
- Ignore these types of messages that arrive in chats.
- Review the security certificate to verify the legitimacy of the site in question.
- Notify the owner of the account from which the message is sent so that they know that they are carrying out this malicious activity impersonating their identity and from their account.
- Enable additional security measures, such as double factor authentication.
- Notify users who have been affected by this message. (I)
–
