Facebook Slammed with Another Phishing Attack
Facebook was hit with yet another phishing attack yesterday as malicious e-mails went to some of the social networking site's 200 million users. The attack, which Facebook is actively fighting, asked members to leave Facebook and access outside sites that then stole user names and passwords.
The malicious e-mail messages were of the garden variety for scams: poor grammar, misspellings, and a request to visit an external site that included the domain name www.151.im, www.121.im or www.123.im (do yourself a favor and don't click on those links). Once there, users were asked to log in again with their Facebook user ID and password, and boom -- suddenly, your information is released and becomes a vehicle for spamming.
Like the phishing attacks on Facebook late last month and early this month, these efforts seemed only to steal user names and passwords, not infect a computer with viruses. With these log-in credentials, phishers attempt to access Web mail services, as many people use the same log-in information for multiple sites. Identity theft could spring from there.
A Facebook spokesman told the New York Times that Facebook was "blocking links to new phishing sites, cleaning up phony messages and Wall posts and resetting the passwords of affected users." The number of those affected is undetermined.
There are many ways to protect your identity on Facebook, including varying your passwords, changing privacy settings and keeping a close eye on the domain name. Also, if your college-educated friends start typing like third-graders, something's probably up.
» posted by ITworld staff
PC World
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
jfruh
Apple syncing patent can't come soon enough
pasmith
New Twitter features borrow from 3rd party clients
Esther Schindler
Open Source Changes the Software Acquisition Process
mikelgan
How to set up continuous podcast play on the new iTunes
David Strom
Five important Windows 7 mobility features
sjvn
Guard your Wi-Fi for your own sake
Sandra Henry-Stocker
Grepping on Whole Words
Sidekick: The Good News & the Bad News
Either way you look at it Microsoft Data Center management did not follow standards or best practices in this failure. In which case it makes me wonder more about the outsourcing of corporate data much less personal data.
- mburton325
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
