Facebook's recurring nuisance - the recycled scam
Posted on 01 December 2010.
Every now and then, a new Facebook scam pops up that takes advantage of the users' curiosity and lures them in by promising to allow them to view who has visited their profile. It is actually amazing how many people fall for it each time - even with all the warnings that you can find about it on the Internet.

The latest one repeats the usual pattern: a friend of the victims has fallen for the scam and his status now contains the very typical OMG OMG OMG... I cant believe this actually works! Now you really can see who viewed your profile! on [BIT.LY LINK] message. The victims are intrigued, and click on the link which lands them on a webpage that offers them the application that will supposedly allow them to see their profile's visitors:


To install the application (called ePrivacy), the users must give it permission to access their basic information, send them e-mails, post on their walls, access their data any time and even manage any of the pages they are administrators of.

Surprisingly enough, this request apparently doesn't trigger the alarm bell with many users. As soon the victims allow the application to do all that, the same message they fell for is posted as their status message, ready to lure in other curious users.

According to Sophos, the current campaign uses a number of different links, but they all point to the same page. An inquiry into just one of those showed that some 60,000 people have already clicked on it. It doesn't mean they all "installed" the application, but if only one of them did, it is still one victim to many.

If the "ProfileSpy" logo with the black hat icon looks familiar, it is because the same scammers have run a nearly identical campaign some 5 months ago. Back then, they also tried to get victims to register for a mobile service that costs $19.99 per month.






Spotlight

Overwhelming optimism for information security in 2015

Posted on 19 November 2014.  |  Expectations for data security next year are surprisingly optimistic given the harsh reality of 2014. Enterprise security staffers are so confident that most respondents said they would "personally guarantee that their company's customer data will be safe in 2015."


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Thu, Nov 20th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //