Facebook phishing warning
Then I wondered, whois fanebook.com (18.104.22.168)?
The similarities in appearance between the phishing site login and facebook’s are remarkable, but it looks like fanebook is a little behind, as the page appears to be from February 07, 2008.
Notice the incorrect URL, copyright date, footer and the presence of the Tour link; the source is also a dead giveaway. It links to the real facebook.com in several places.
How to avoid falling for a Facebook phishing scam
- Don’t go to links posted by people on your wall, especially if you go to their profile and they have sent the same message to several other people.
- http://www.facebook.com.xxxxxxxxx.xxxxxxxxxxx.cn is not a facebook site
- Use some kind of phishing filter or related extension like WOT for Firefox. NoScript can help, as well.
- If you already logged into Facebook and see a prompt to login again, don’t.
- If you think that your account was hijacked, make a new password immediately. Sometimes the phishing sites redirect you to Facebook itself so you think you logged in successfully.
- Always check the URL before entering your credentials
- You can use a password manager (but not Internet Explorer’s) that will enter in your password automatically. If you see a site that looks like facebook but Firefox doesn’t fill in your password, than it is fake.
- If you suspect it is a fake, don’t sign in, or at least look at the source code first. If it looks completely unintelligible then it is fake.