Jack Yan
Global  |  Leadership  |  Experience  |  Media  |  Videos
Blog  |  Contact
 
  Follow me on Mastodon Follow me on Twitter Check out my Instagram account Follow me on Drivetribe Follow me on NewTumbl Follow me on Linkedin Follow me on Weibo Join my page on Facebook Subscribe to my blog’s RSS feed  

 

Share this page




Quick links


Surf to the online edition of Lucire





Add feeds



Get this blog via email
Enter your Email


Powered by FeedBlitz

Enter your email address:


Delivered by FeedBurner



 

The Persuader

My personal blog, started in 2006. No paid posts.



« | »

13.12.2019

Warning about Facebook “copyright” phishing scam—which Facebook itself covers for

Yesterday, I received an email purporting to be from Facebook, with the body reading:

Hi,

We are obliged to inform you that your page has been flagged because of unusual and illegal activity, therefore your page might be permanently deleted.

In order to avoid such actions from our side, you need to fill the forms following the link below.

https://www.facebook.com/notes/page-copyright/appeal-a-page-policy-violation/110429970444163/

If you decide not to act accordingly, we will immediately delete your page.

Yours,
Facebook Security Team

   The ‘from’ address is secure@facebook.com01259.com, which should already scream ‘Fake!’ but my eyes weren’t drawn to that. Nor was it drawn to the fact the email came from AWS, not Facebook. I clicked on the link, because it was hosted at Facebook.
   I arrived at this page:

   Yes, it’s on Facebook, but it’s actually a Facebook page, which anyone can set up. This is the ‘about’ section from that page. If you click on their link, that’s when you get suckered in, as you have to fill out information about your own page. Beyond this, you have to log in again, and that’s when their fun starts.
   After I learned of the scam, I sent out warnings on Twitter and on my public page at Facebook. I then reported the page to Facebook (it’s still there, as it has been since September). There’s also a second one along the same lines, also from September.
   Here’s the real kicker: my Facebook post has actually disappeared. Facebook has deleted a warning to other Facebook users about parties using their platform illegally for phishing and identity theft. I’d call this an implicit endorsement of criminal activity.
   It’s not unlike Google Plus, which used to delete my posts critical of Google itself—even though these are real warnings.
   Please do not be taken in by this identity theft scam—and I’m very surprised that Facebook would actually allow it to happen.
   Then again, remember Facebook used to force “malware scanner” downloads on us, so it seems to adopt the same tactics dodgy hackers do.

Related posts

Filed under: internet—Jack Yan @ 13.33

Leave a reply