Facebook is no stranger to spam. Just the fact that almost a billion people on the planet have a Facebook account makes it a perfect medium for scammers to exploit. They just blast out their bogus Facebook messages and notifications to as many emails as they can, and there is a good chance they will meet success of some kind.
This latest spam attack was reported to us yesterday. What makes this one convincing is that the email message uses a hyperlink that looks like a legitimate Facebook URL . The email message is shown below:
From: Facebook [mailto:update+******@*******.dk] <–Not a Facebook Email Address Sent: Thursday, September 06, 2012 3:44 PM To: ****************** Subject: Confirm your account on Facebook
Once we dug a little deeper, we discovered a link to a Canadian Pharmacy buried in the HTML. If a user was to click the email link, they would be taken to the following page:
To avoid this scam and ones like it in the future, it is important to understand the account verification and confirmation process that Facebook uses. Facebook will not email you a code to confirm your email address. They will email you a confirmation link, and as with most email verification messages, all you have to do is click on the link.
Facebook account verification is something totally different. To verify your account, Facebook will send you a code via test message. You simply enter the code and your done.
Leave a reply
