Watch out for a fake Facebook Site!

facebook phising

If you are 18 years old or older than 55, there’s good chance that you’re one of the over 100 million Facebook users in the India. Since its inception, Facebook has caught the imagination of Indians, who were earlier smitten with Orkut. However, socializing on FB has a flip side to it. People tend to share each and every move in their lives, post personal information; photos etc. on Facebook without realizing it could be easily used for phishing. Facebook is most preferred target for cybercriminals who specialize in stealing social network accounts.
According to Kaspersky Lab’s statistics, in Q1 2014 fake sites imitating Facebook accounted for 10.85% of all instances when the heuristic Anti-phishing component was triggered. Only fake Yahoo pages sparked more phishing alerts, leaving Facebook the prime target among social networking sites.
Cybercriminals use stolen accounts to send spam to the victims’ contact lists and publish spam on their friends’ walls, or to spread messages asking their friends to send urgent financial assistance. Hijacked accounts are also used to collect information on individuals for use in future targeted attacks. Facebook fakery today has become a global business, with cybercriminals attacking the site in a variety of languages: English, French, German, Portuguese, Italian, Turkish, Arabic and others.
The risk of personal data being stolen from smartphones is even higher, as some mobile browsers hide the address bar while opening the page, which makes it much more difficult for users to spot fake resources.
Explaining further Nadezhda Demidova, Web Content Analyst, Kaspersky Lab says: “Cybercriminals have developed a number of ways to entice their victims to pages with phishing content. They send links to phishing web pages via email or within social networks or in banners placed on third-party resources. Fraudsters often lure their victims by promising them ‘interesting content’. When users follow the link provided, they land on a fake login page that contains a standard message asking them to log in before viewing the page. If users don’t become suspicious and enter their credentials, their data will immediately be dispatched to cybercriminals”.
IAMAI’s safe surfing campaign is also an initiative taken to check cybercrime and encourage safer online experience. IAMAI with this campaign is trying to sensitise young people – especially from schools and colleges on the importance of Safe Surfing.
Expert advice
•If you receive an email notification from Facebook or a message that your account may be blocked, never enter your credentials in a form attached to that message. Facebook never asks users to enter their password in an email or to send a password via email.
•Place the cursor on the link and check if it leads to the official Facebook page. Moreover, you should manually type the Facebook URL into the address bar – cybercriminals are capable of concealing the addresses to which they are leading you.
•When you have manually entered the URL in the address bar, check it again after the page has loaded to make sure it has not been spoofed.
•Remember that Facebook uses the HTTPS protocol to transmit data. The absence of a secure connection probably means that you are visiting a fraudulent site even if the URL address seems to be correct.


Leave a Reply

Your email address will not be published. Required fields are marked *

About Thinking Aloud

“Thinking Aloud” reflects the emerging trends and varied outlook of the rapidly evolving internet and communication sector. An IAMAI publication, this is a part of the market education initiative of the association.

Read More

Internet & Mobile Association of India,

28, 1st Floor, Okhla Industrial Estate, Phase – III, New Delhi-110020 (India)
Call: +91 011-46561690