Yesterday, I received an email purporting to be from Facebook, with the body reading:
Hi,
We are obliged to inform you that your page has been flagged because of unusual and illegal activity, therefore your page might be permanently deleted.
In order to avoid such actions from our side, you need to fill the forms following the link below.
https://www.facebook.com/notes/page-copyright/appeal-a-page-policy-violation/110429970444163/
If you decide not to act accordingly, we will immediately delete your page.
Yours,
Facebook Security Team
The ‘from’ address is [email protected], which should already scream ‘Fake!’ but my eyes weren’t drawn to that. Nor was it drawn to the fact the email came from AWS, not Facebook. I clicked on the link, because it was hosted at Facebook.
I arrived at this page:
Yes, it’s on Facebook, but it’s actually a Facebook page, which anyone can set up. This is the ‘about’ section from that page. If you click on their link, that’s when you get suckered in, as you have to fill out information about your own page. Beyond this, you have to log in again, and that’s when their fun starts.
After I learned of the scam, I sent out warnings on Twitter and on my public page at Facebook. I then reported the page to Facebook (it’s still there, as it has been since September). There’s also a second one along the same lines, also from September.
Here’s the real kicker: my Facebook post has actually disappeared. Facebook has deleted a warning to other Facebook users about parties using their platform illegally for phishing and identity theft. I’d call this an implicit endorsement of criminal activity.
It’s not unlike Google Plus, which used to delete my posts critical of Google itself—even though these are real warnings.
Please do not be taken in by this identity theft scam—and I’m very surprised that Facebook would actually allow it to happen.
Then again, remember Facebook used to force “malware scanner” downloads on us, so it seems to adopt the same tactics dodgy hackers do.