So it appears that Facebook has once again been attacked by a coordinated phishing attack, this time around by the following URLs: Areps.at, Bests.at, Kirgo.at, Nutpick.at, and Brunga.at. For those unfamiliar with phishing attacks, they work like this: You receive a new message in your inbox with “Hello” (or something similar) in the Subject Line and a URL (web address) in the message. Today’s phishing attacks for example feature areps.at or brunga.at in the message.
Now if a Facebook user clicks on one of these links, it will send you to a fake-Facebook login screen, which you would notice — if you’re paying attention — has a different web address than Facebook. However, most people who fall for phishing scams are not paying attention and follow the site’s prompt to input their login information. The site then captures the login information, logins into your account and sends the message to everyone in your group. Leaving you unable to enter your account and the phishing attack now sent to all your friends. Not fun.
So be sure to never click on an unidentified link, especially if it’s to some weird site that doesn’t look familiar (i.e. www.areps.at). And if you do, then be definitely sure to never input your login information. Always check the web address in your browser window first. If you follow these steps, you’ll never again fall prey to these attacks.
Also, knowledge is power and friends help each other out. So, be a friend and let others you know about today’s attacks and keep them from losing their accounts. After all, phishing in the online world is never fun.
(Photo courtesy of TechCrunch)
I got the Brunga.at message earlier today. Just deleted it on sight, thought it was spam. Didn’t realize it was an actual attack though! Close call, I guess.
It upsets me that people do stuff like this, do they not have anything else better to do with their time other than program spyware, virii and worms?