{"id":1400,"date":"2019-04-06T19:33:37","date_gmt":"2019-04-06T19:33:37","guid":{"rendered":"http:\/\/www.syyhoaxanalyzer.com\/?p=1400"},"modified":"-0001-11-30T00:00:00","modified_gmt":"-0001-11-29T17:00:00","slug":"Facebook-Account-Reported-Phishing-Scam","status":"publish","type":"post","link":"https:\/\/www.syyhoaxanalyzer.com\/?p=1400","title":{"rendered":"Facebook Account Reported Phishing Scam"},"content":{"rendered":"<div>\n<h2>Outline<\/h2>\n<p>Message purporting to be from Facebook claims that the recipient&#8217;s Facebook account has been reported for annoying or insulting other users and will be disabled if he or she does not confirm account details within 24 hours. \u00a0 <\/p>\n<p><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js\"><\/script><br \/>\n<!-- HS Net Top Content Responsive --><br \/>\n<ins class=\"adsbygoogle\"\n     style=\"display:block\"\n     data-ad-client=\"ca-pub-0355887770822260\"\n     data-ad-slot=\"4870821038\"\n     data-ad-format=\"auto\"><\/ins><br \/>\n<script>\n(adsbygoogle = window.adsbygoogle || []).push({});\n<\/script><\/p>\n<h2>Brief Analysis<\/h2>\n<p>The message is not from Facebook. It is a phishing scam designed to steal the user&#8217;s Facebook and webmail login details as well as credit card numbers and other personal details. If you receive this message, do not click any links that it contains.<\/p>\n<h2>Example<\/h2>\n<div class=\"example\">\n<p>LAST WARNING : Your account is reported to have violated the policies that are considered annoying or insulting Facebook users. Until we system will disable your account within 24 hours if you do not do the reconfirmation.<\/p>\n<p>Please confirm your account below:<\/p>\n<p>[Link Removed]<\/p>\n<p>Thanks.<br \/>\nThe Facebook Team<br \/>\nCopyright facebook  \u00a9 2011 Inc. All rights reserved.&lt;\/div<\/p>\n<h2>Detailed Analysis<\/h2>\n<p>Many Facebook users are currently receiving messages like the example shown above. The messages claim that the user&#8217;s Facebook account has been reported for policy violations, specifically, annoying or insulting other Facebook users.<\/p>\n<p>The user is instructed to follow a link in the message in order to carry out an account &#8220;reconfirmation&#8221;. According to the message, which purports to be from &#8220;The Facebook Team&#8221;, the user&#8217;s account will be disabled if he or she does not confirm the account within 24 hours. \u00a0<\/p>\n<p><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js\"><\/script><br \/>\n<ins class=\"adsbygoogle\"\n     style=\"display:block; text-align:center;\"\n     data-ad-format=\"fluid\"\n     data-ad-layout=\"in-article\"\n     data-ad-client=\"ca-pub-0355887770822260\"\n     data-ad-slot=\"9162856233\"><\/ins><br \/>\n<script>\n     (adsbygoogle = window.adsbygoogle || []).push({});\n<\/script><\/p>\n<p> However, the message is certainly not from Facebook and the claim that the user&#8217;s account has been reported is untrue. In fact, the message is a phishing scam designed to trick users into divulging their personal and financial information to Internet criminals. Those who fall for the ruse and click the link will be first taken to a fake Facebook &#8220;Account Disabled&#8221; web form that asks them to provide Facebook login details and part of their credit card number. The bogus form is shown in the screenshot below:<\/p>\n<\/div>\n<div align=\"center\">\n<p><a href=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-login.jpg\" data-rel=\"penci-gallery-image-content\" ><img loading=\"lazy\" decoding=\"async\" data-attachment-id=\"22437\" data-permalink=\"https:\/\/www.hoax-slayer.net\/facebook-account-reported-phishing-scam\/disabled-fb-login\/\" data-orig-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-login.jpg\" data-orig-size=\"550,639\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"disabled-fb-login\" data-image-description=\"\" data-medium-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-login-258x300.jpg\" data-large-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-login.jpg\" class=\"aligncenter size-full wp-image-22437\" src=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-login.jpg\" alt=\"Fake Facebook Login page\" width=\"550\" height=\"639\" srcset=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-login.jpg 550w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-login-258x300.jpg 258w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-login-500x581.jpg 500w\" sizes=\"(max-width: 550px) 100vw, 550px\" \/><\/a><\/p>\n<\/div>\n<p>Once the victim has completed this bogus form, he or she is then taken to a second fake form that asks for webmail login details:<\/p>\n<div align=\"center\">\n<p><a href=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-webmail.jpg\" data-rel=\"penci-gallery-image-content\" ><img loading=\"lazy\" decoding=\"async\" data-attachment-id=\"22438\" data-permalink=\"https:\/\/www.hoax-slayer.net\/facebook-account-reported-phishing-scam\/disabled-fb-webmail\/\" data-orig-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-webmail.jpg\" data-orig-size=\"571,282\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"disabled-fb-webmail\" data-image-description=\"\" data-medium-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-webmail-300x148.jpg\" data-large-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-webmail.jpg\" class=\"aligncenter size-full wp-image-22438\" src=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-webmail.jpg\" alt=\"Fake Webmail login\" width=\"571\" height=\"282\" srcset=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-webmail.jpg 571w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-webmail-300x148.jpg 300w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-webmail-500x247.jpg 500w\" sizes=\"(max-width: 571px) 100vw, 571px\" \/><\/a><\/p>\n<\/div>\n<p>Once the requested Webmail details are provided, the user is taken to a third bogus form that asks for a username and &#8211; again &#8211; the first 6 digits of the user&#8217;s credit card number:<\/p>\n<div align=\"center\">\n<p><a href=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-confirm.jpg\" data-rel=\"penci-gallery-image-content\" ><img loading=\"lazy\" decoding=\"async\" data-attachment-id=\"22439\" data-permalink=\"https:\/\/www.hoax-slayer.net\/facebook-account-reported-phishing-scam\/disabled-fb-confirm\/\" data-orig-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-confirm.jpg\" data-orig-size=\"580,434\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"disabled-fb-confirm\" data-image-description=\"\" data-medium-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-confirm-300x224.jpg\" data-large-file=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-confirm.jpg\" class=\"aligncenter size-full wp-image-22439\" src=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-confirm.jpg\" alt=\"Fake Facebook terms of service message\" width=\"580\" height=\"434\" srcset=\"https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-confirm.jpg 580w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-confirm-300x224.jpg 300w, https:\/\/www.hoax-slayer.net\/wp-content\/uploads\/2018\/10\/disabled-fb-confirm-500x374.jpg 500w\" sizes=\"(max-width: 580px) 100vw, 580px\" \/><\/a><\/p>\n<\/div>\n<p>All of the information provided on the bogus forms can be collected by the criminals operating the scam. Once armed with this information, the scammers can hijack the user&#8217;s real Facebook account and, posing as the account holder, send more scam messages to the victim&#8217;s Facebook friends. They can similarly hijack the victim&#8217;s webmail account and use it to send further scam and spam messages. Once they have hijacked these accounts, the scammers are likely to lock their victims out by changing account passwords and email addresses.<\/p>\n<p>They may also use the stolen credit card information to \u00a0delve further \u00a0into their victim&#8217;s financial information with a view to conducting more fraudulent activities and identity theft.<\/p>\n<p>There have been several variations of this scam over recent months. While the backstories used by the scammers may vary considerably, all are intended to trick users into supplying account login details and other personal and financial information to cybercriminals.<\/p>\n<p>Another recent version, which purports to be \u00a0an <a href=\"https:\/\/www.hoax-slayer.net\/alert-from-facebook-security-team-phishing-scam\/\">alert from Facebook Security<\/a>, claims that the recipient&#8217;s Facebook account may have been compromised and that he or she must follow a link to verify account details within 12 hours or risk having the account permanently suspended.<\/p>\n<p>Users should be very cautious of any message that asks them to follow a link to verify account information even if it looks like a genuine Facebook message and the link leads to a page that looks like the genuine Facebook website. Always login to your Facebook account directly via your web browser rather than by following a link in an email or chat message.<\/p>\n<p>Such scams can often be identified by examining the link in the messages. The links are not genuine Facebook web addresses. The scams are often characterized by poor or unusual grammar and spelling.<\/p>\n<p><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js\"><\/script><br \/>\n<!-- Third Content Ad Responsive --><br \/>\n<ins class=\"adsbygoogle\"\n     style=\"display:block\"\n     data-ad-client=\"ca-pub-0355887770822260\"\n     data-ad-slot=\"1909104632\"\n     data-ad-format=\"auto\"><\/ins><br \/>\n<script>\n(adsbygoogle = window.adsbygoogle || []).push({});\n<\/script><\/p>\n<div align=\"center\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js\"><\/script><br \/>\n<!-- HS Net Bottom AdLinks --><br \/>\n<ins class=\"adsbygoogle\" style=\"display: block;\" data-ad-client=\"ca-pub-0355887770822260\" data-ad-slot=\"1358951439\" data-ad-format=\"link\"><\/ins><br \/>\n<script>\n(adsbygoogle = window.adsbygoogle || []).push({});\n<\/script><\/div>\n<p><\/br><\/br> Original Source : <a href=\"https:\/\/www.hoax-slayer.net\/facebook-account-reported-phishing-scam\/\" target=\"_blank\">https:\/\/www.hoax-slayer.net\/facebook-account-reported-phishing-scam\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Outline Message purporting to be from Facebook claims that the recipient&#8217;s Facebook account has been reported for annoying or insulting other users and will be disabled if he or she does not confirm account details within 24 hours. \u00a0 Brief Analysis The message is not from Facebook. It is a phishing scam designed to steal [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":6890,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-1400","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hoax-inggris"],"_links":{"self":[{"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=\/wp\/v2\/posts\/1400"}],"collection":[{"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1400"}],"version-history":[{"count":0,"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=\/wp\/v2\/posts\/1400\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=\/wp\/v2\/media\/6890"}],"wp:attachment":[{"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1400"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1400"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.syyhoaxanalyzer.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1400"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}