Social media users, beware. A new phishing scam has recently begun circulating which sends fabricated cancellation e-mails appearing to be from Facebook. The BBB urges users not to let the threat of losing your Facebook account lead you to install malicious software (malware) onto your computer. These e-mails are not legitimate account cancellation notifications.
The scam has been contacting users by e-mail to inform them that they have an “account cancellation request” from Facebook. Recipients are urged to follow a link in order to cancel the notification; however, this link entices users to download malware to their computer. The phishing e-mails claim that following the link is the surest way to maintain an active Facebook account.
The most ingenious aspect of the entire scam is that the malware link provided appears to be delivered from a valid facebook.com address. In reality, the link redirects users to a third-party application, simply running on the Facebook platform.
Users who click on the link will receive a message requesting confirmation to run an unknown application on their computer. By clicking the “run” button, users are encouraged to download the latest version of Adobe Flash. The file which downloads is not the latest version of Flash, but a code developed for hackers to view any and all activity on the targeted computer. The file also allows hackers to take control of the computer, and manipulate the system according to their agenda.
Computer security blog, Naked Security, has provided screen shots and more information regarding the phishing scam on their website. For details, please visit the following link: