14 DAY TRIAL // Free tickets are again offered on Facebook, again coming from Southwest Airline company, but this time they come with a twist. The spammers actually use security tokens to get access to your wall with the purpose of spreading their message.
A GFI Labs researched came across the scam and shared with the rest of the world that “What made this particular scam interesting is that the scammers had used and abused a Facebook token generator to spread it. A token is basically an electronic key that is used to access something one does not readily have access to. In this case, a token is used to gain rights to post on Facebook walls.”
Once the link was clicked, a redirect occurred to a domain called southwestisbest.com, which contained a pop-up window that forced the customer to provide a validation code. In order to obtain the code, he had to click on another link which actually gave the hackers the token which looks something like “token":"AQAVKRmA","expire":1317818514". To reveal the security key, victims were provided the Facebook mobile address m.facebook.com/ajax/dtsg.php which supplied the string.
After the key was used to post a message on the member's wall, a survey that looks like the one I've mentioned earlier in the Olive Garden scam appeared.
Graham Cluley also came across a similar hoax, but that one offered two free airline tickets and it took the victim straight to the survey. In his case, in order to win the tickets he had to share the link with his friends adding that "Southwest is the best," but as he discovered, there was no automated system to check what he wrote. He turned out to be a winner even if he wrote something else.
It looks like old scams are reemerging with the same design, but they hide more intricate tricks. Make sure not to trust any suspicious content, not even if it's coming from one of your friends, as they might have unknowingly shared the false advertisement.