November 19, 2009

False Facebook uncovered

New way to steal your Facebook account

It is now uncovered a fake version of Facebook that are intended to trick users into revealing login details to their Facebook account.

Both the URL and the content is very similar to the original, and users can therefore easily be fooled into thinking that it is the real version of Facebook they use, and log in as usual.Facebook

At login the user will however receive an error message, which alone should alert the users, said Panda Labs in a statement. Both the username and password will then fall into the hands of the the people behind.

Panda Labs has posted screenshots of how the process and the copy looks at an Flickr account.

This URL is now scattered around the web, probably through e-mails and blackhat SEO techniques. Either way, the criminals take control of your user account once they have login information, and thus publish spam comments with malicious links, and messages to users, and more.
Luis Corrons, technical director Panda Labs

Panda Labs offers the following advice for users to avoid going into the trap:
• Do not respond to unknown emails or click on links in these emails.

• Check that the URL that you enter is correct (http://www.facebook.com), since the fake sites using similar addresses. Often there may be only one letter difference.

• If you typed your username and password on any of these pages, go to the appropriate page and change your password as soon as possible, so nobody can use your account

Free Website Hosting