Verifying the web address can reveal the deceit

Oct 17, 2014 16:57 GMT  ·  By

Some advertisements conveniently displayed on the accounts of Facebook users redirect to fraudulent websites that ask for the keys to their accounts.

In most cases, the phishing attempt is detected by major web browsers like Google Chrome, Mozilla Firefox and Internet Explorer, but they cannot catch the fraud straight from the beginning and the crooks have an operational window to promote the malicious page and collect information from the victims.

Gold rush is what compromises the social account

According to Facecrooks, the malicious ad claims to point to a location where a large amount of in-game gold for World of Warcraft can be obtained free of charge.

The generous offer was what raised suspicions, but some users may be blinded by this and fall straight into the trap laid out by the crooks.

As soon as the ad is clicked, a set of redirects ensue, taking the potential victim to a log-in page impersonating the original one from Facebook. A simple look at the page address should ring the alarm bells because it reveals that the connection is no longer to the social networking website.

Also, the fact that a user already logged in is asked to provide the credentials to access their account again is a clear sign that something “phishy” is going on.

Facebook credentials are most useful for malicious activity

Even if most users are unaware of the sensitive nature of the information inside a social networking account, cybercriminals are well aware of the money-making potential.

A compromised account can be used as the launchpad of future scams that can deliver all types of malware to the compromised computer. From Trojans stealing banking information to ransomware equipped with encryption capabilities.

The most prevalent form of deceit, however, is spreading fake messages that lead to online surveys. Despite the apparent non-threatening nature, they can be used to extract personal information from the user, such as the phone number or a personal email address. Any detail is worth something for the cybercrooks.

Cases have been observed where a compromised account was used to ask money from the friends of the victim, pretending to be in some kind of trouble.

Users are advised to be on high alert when suspicious log-in pages appear after clicking on a link on Facebook. Checking if the URL address still indicates they’re on the social networking website or if the secure connection is available are efficient methods for spotting the fraud attempt.