We already know that Facebook does nothing if you want to use scripts to join groups, even if the scripts all give roughly the same answers. Apparently that’s not enough to trigger the systems at this company that’s worth almost a billion dollars (that’s a proper billion, or what the Americans call a trillion). Unless, of course, they want these bot accounts on there to continue lying about reach, or run some other sort of scam.
But what about brand-new accounts that are clearly bots, that write nonsensical things that bots are programmed to do, and which friend other bots? These are bot nets, the sort I saw all the time when I used Facebook regularly. The nights in 2014 when I spotted over 200 bot accounts? A lot of them were in these nets, and I made it a mission to report them, since they tended to exist in groups of a few dozen, maybe a hundred at most.
Last night I saw nets of thousands. Imagine a new account that’s friended thousands of other new accounts, all using a series of names, and all pretending to work for a limited number of workplaces. Surely these are obviously bots, and Facebook’s systems would detect them? I mean, if you’ve been on Facebook for even six months you’d know that these patterns existed, let alone 17 years.
Um, no.
I’ve been reporting a whole bunch of these bots and Facebook’s reaction is to tell me, as they do with bot accounts running group-joining scripts, that no community standards have been violated.
Normally I would see a dozen or so bot accounts each time I pop in (and my friends who moderate on there tell me they can see many per minute). Even as an irregular user it means I see more bots than humans, but now that I’ve seen over 4,000 (just go to one of these bots’ friends’ lists and take a sufficiently large sample) that Facebook allows, then come on, you can’t tell me that this site is still worth giving your money to. In 2014 I called seeing 277 bots in one night an ‘epidemic’, on the basis that if a regular Joe like me could, then how many were really on there? Now I see 4,000 in one night. These two have over 4,000 and 3,000, with some overlap:
And in 2014, I could report them, and some would actually be deleted. Others would need repeated reports. In 2021, none are deleted, based on the ones I reported.
Therefore, Facebook’s systems neither detect bots nor do a thing about them when a user blatantly points them out.
And given that this company is worth over US$800 milliard, then you know they exist with their blessing—at the least with their inaction. Because US$800 milliard buys a lot of technology, but apparently not enough to deal with bots or misinformation.
The scammers know this and the con artists know this. Governments know this. This is a danger zone for consumers, yet the last few years still weren’t sufficient for most western governments to act. It makes you wonder just what it’ll take to wake people up, since folks don’t even seem to mind giving their money to a company that has such a poor track record and no independent certification of its metrics. Would shame work? ‘You dumbass, you gave money to them?!’ Surely this now makes it more obvious than ever just what a terrible waste of money Facebook is?
PS.:Here’s another new account with what appears to be 4,326 bot friends (based on a reasonable sample).—JY
PS.:This fake page has been up for days, and its posts, promoting a phishing link, apparently do not violate Facebook’s standards. Duly reported, but what really is the point since Facebook seems to love these?
Yesterday, I received an email purporting to be from Facebook, with the body reading:
Hi,
We are obliged to inform you that your page has been flagged because of unusual and illegal activity, therefore your page might be permanently deleted.
In order to avoid such actions from our side, you need to fill the forms following the link below.
If you decide not to act accordingly, we will immediately delete your page.
Yours,
Facebook Security Team
The ‘from’ address is secure@facebook.com01259.com, which should already scream ‘Fake!’ but my eyes weren’t drawn to that. Nor was it drawn to the fact the email came from AWS, not Facebook. I clicked on the link, because it was hosted at Facebook.
I arrived at this page:
Yes, it’s on Facebook, but it’s actually a Facebook page, which anyone can set up. This is the ‘about’ section from that page. If you click on their link, that’s when you get suckered in, as you have to fill out information about your own page. Beyond this, you have to log in again, and that’s when their fun starts.
After I learned of the scam, I sent out warnings on Twitter and on my public page at Facebook. I then reported the page to Facebook (it’s still there, as it has been since September). There’s also a second one along the same lines, also from September.
Here’s the real kicker: my Facebook post has actually disappeared. Facebook has deleted a warning to other Facebook users about parties using their platform illegally for phishing and identity theft. I’d call this an implicit endorsement of criminal activity.
It’s not unlike Google Plus, which used to delete my posts critical of Google itself—even though these are real warnings.
Please do not be taken in by this identity theft scam—and I’m very surprised that Facebook would actually allow it to happen.
Then again, remember Facebook used to force “malware scanner” downloads on us, so it seems to adopt the same tactics dodgy hackers do.
Interesting to get this letter from the UK today, sent air mail from the Croydon Mail Centre, Surrey, on September 5.
The Nigerian 419 scammers have figured out that email is ineffective, so they are moving on to this brand-new technology: mail.
As with the last time I blogged about clumsy 419 attempts—a terrible PDF—this one brings up more questions. An attorney without his own letterhead or an office address? A matter so urgent on August 19 that it took them 17 days to put it into the post? An executor so ineffective that it takes him nine years to locate next of kin?
These people do not think. If I can be found online, then clearly I’ve established a bit of a reputation. And I didn’t get there by being a moron.
As a public notice, please be wary of the change of medium from the 419ers. They may be reaching out to you soon via the postal system, a method that they commonly used before the days of email.
