backtop


Print 21 comment(s) - last by Lord 666.. on May 18 at 8:19 PM

Facebook is believed to be under attack by a relatively organized group of cybercriminals

Facebook, the world's largest social networking site with over 200 million users, is an attractive target for hackers and cyber criminals.  Unsurprisingly, the site has been increasingly under attack in recent months.  The latest attack comes in a cohesive phishing assault designed to lure Facebook's users to unwittingly give up their passwords.

The attack began earlier this month, when hackers gained access to a handful of users accounts.  From there, they used the compromised accounts to send out emails to other users, posing as a friendly message and asking them to click a link.  Users clicking the link were taken to a page that looks like Facebook's login page.  The users would then think that their account had logged out, and give the hackers' page their username and password.

The malicious domains include www.151.im, www.121.im and www.123.im.

The ploy proved successful, and a growing number of accounts began sending out the phishing messages over Facebook's messaging system.  Facebook spokesman Barry Schnitt says that the site is currently trying to block all the compromised accounts and clean up the mess.  He declined to say precisely how many accounts had been compromised.

Facebook believes that the attacks were geared to gain access to a large number of accounts to use as spammers, sending out advertisements for pharmaceuticals and other popular spam fodder.  They also believe the hackers were considering using the compromised account information to engage in identity theft.

A similar attack against Facebook had occurred just a few weeks ago, and both attacks serve as evidence that the hackers are growing increasingly bold and organized.  Last year, Facebook was targeted by a similar scheme, which spread a Trojan malware called Koobface (a reference to Facebook).

Facebook users are urged to never click links from friends, unless they're entirely sure of their authenticity.  Further, users should physically retype Facebook's web address into their web browser's address bar if logged out, rather than typing in their information on a redirect page.



Comments     Threshold


This article is over a month old, voting and posting comments is disabled

People are stupid.
By SavagePotato on 5/15/2009 10:48:00 AM , Rating: 2
Working for a smaller isp, there are phishing scams running constantly. Likewise there are people falling for it constantly, even when it is so blatant as to be asking for their name, address, email login and password, as well as other personal information. Many people punch it right in without question.

It must be ridiculous for larger entities the amount of it that goes on.




RE: People are stupid.
By oTAL on 5/15/2009 11:21:44 AM , Rating: 5
There's a difference between being stupid and not knowing something.

Not everyone works in IT. Some pretty intelligent people have never be taught how these scams work and they fall for them. I mean, it's pretty common for websites to ask you for your login and password after you logged in already (connection problems, session expired, whatever...)

This is not an email scam. You don't have to be stupid... you just have to not understand that someone may copy a website and that you should look at the URL to verify that...


RE: People are stupid.
By TSS on 5/15/2009 11:34:45 AM , Rating: 2
in fact isn't this how they learn? get your account hacked and lose a bit o work?

i remember meeting my first virus. my dad was busy for 3 days cleaning it out. 3 days without my PC taught me to pretty darn carefull. maybe now they will verify the url.

might come in handy when somebody tries phising their bank account website. that will end worse then a facebook account.


RE: People are stupid.
By Motoman on 5/15/2009 11:58:42 AM , Rating: 5
quote:
maybe now they will verify the url


I fear you have too much faith in humanity.

To paraphrase Einstein, "only two things are infinite...the universe, and human stupidity...and I'm not so sure about the former."


RE: People are stupid.
By Samus on 5/15/09, Rating: 0
RE: People are stupid.
By Motoman on 5/16/2009 1:42:54 AM , Rating: 4
...because clearly, Eintstein was an idiot. Hell, even the one thing he did that he regretted turned out to be (maybe) right - the Universal Constant. Although dark energy wasn't concieved of yet, so he didn't know what he was accounting for. Big Void theory notwithstanding.


RE: People are stupid.
By Lord 666 on 5/18/2009 8:59:13 AM , Rating: 2
Einstein also enjoyed having sex with little girls and eventually died of syphilis.

For a genius, he too also had his stupid moments.


RE: People are stupid.
By Motoman on 5/18/2009 10:45:18 AM , Rating: 2
...Einstein died of heart failure.

And you are a loon.


RE: People are stupid.
By Lord 666 on 5/18/2009 8:19:46 PM , Rating: 2
He died of a abdominal aortic aneurysm... much different than a MI.

But if you dig a bit deeper into the damage syphilis causes in the later stages (it weakens blood vessels, heart tissue, and arteries), it reveals the root cause.

http://en.wikipedia.org/wiki/Syphilis or http://www.cdc.gov/std/syphilis/STDFact-Syphilis.h...


RE: People are stupid.
By lco45 on 5/17/2009 9:55:45 PM , Rating: 2
You don't need to use quotes around the word theories, even if you disagree with them.
The word 'theory' already implies uncertainty. Using quotes implies that you don't believe he had theories, or that what he had wasn't really a theory.

On the other hand, you could use quotes if you were deriding the word "facts", implying that you didn't agree with those facts and thought they were still open for doubt.

Many of Einsteins theories were unprovable using the technology available to him at the time, but have since been proven experimentally, making them facts (or "facts" if you don't believe "them").

For example, relativistic time slowing was proved using clocks in aircraft and satellites; the clocks moving at higher speeds ticked slower. Now that's a fact...

Cheers,

Luke


RE: People are stupid.
By Buz on 5/15/2009 6:31:33 PM , Rating: 2
In reality, most of these people will just end up uing extraneous spyware software and grumbling about how windows has no security.


RE: People are stupid.
By SavagePotato on 5/15/2009 1:53:55 PM , Rating: 3
Some pretty intelligent people are willfully as dumb as a post when it comes to anything relating to technology.

For example you would think a dentist could master rebooting a router and not have to resort to a temper tantrum demanding a service call, but then again...

People are stupid.


RE: People are stupid.
By tmouse on 5/18/2009 8:21:50 AM , Rating: 2
Don't count on it. We have a broadcast email list which the CIO likes to use to tell everyone about the latest virus attacks, OS updates and phishing attempts. He includes a copy of the bogus e-mails at the end in quotes. A faculty member who always signs his emails with ALL of his degrees actually replied to the broadcast giving his logon and password to everyone.


Correct me if im wrong...
By Joz on 5/15/2009 4:15:57 PM , Rating: 4
Having used two specific forums for several years, I have noticed that the admins of these two forums are much smarter then most idiot corporate asses.

The simpliest and most effective way to "START" the prevention of scamming is a simple message

When you're already logged onto a website, and you click a link that takes you to another domain, have a pop up warning the person.

And if its from email and not private messages or comments, or w/e. Well, then your just a fvcing idiot.




RE: Correct me if im wrong...
By SavagePotato on 5/16/2009 5:41:14 PM , Rating: 2
What's funny is when they put up a message about phishing scams with an example jpeg at work it generated calls from people, unable to figure out how to delete the example picture from the webpage as the message suggested deleting any mail asking for usernames and passwords.

They thought they picture on the webpage was their email and tried to delete it...

Yes people are stupid...

Beyond beleif.


For the love of bandwidth!
By mydogfarted on 5/15/2009 12:12:19 PM , Rating: 3
Why is there no serious push to find these douchenozzles and wipe them off the face of the earth? Hacking is a global problem, causes millions of dollars a year in damage to networks and computers and rarely do we hear of arrests and prosecutions being made.




RE: For the love of bandwidth!
By JS on 5/15/2009 12:28:10 PM , Rating: 2
They generally operate out of places where cybercrime is pretty far down on the law enforcement priority list. If it even makes the list, what with all the bribe-taking and such using up precious list space.


People are stupid
By highlnder69 on 5/15/2009 11:07:49 AM , Rating: 2
As a comedian once said:

You can't fix stupid!!




RE: People are stupid
By web2dot0 on 5/15/2009 4:49:25 PM , Rating: 2
To say people are stupid is just a way to completely ignoring the problem and not facing the problem head on.

User education is critical, so it is mostly the general lack of information that's causing these scams to work.

If you're checking in your Facebook account in a rush, it could happen to anyone. Hindsight is always 20/20.

To all of you guys who think they are so smart and never fallen to pray to any scams .... well, think about what happened to your 401Ks and the gas prices for the last few years or the housing bubble. It happens to the best of us, so give it up.


the safest place to call someone stupid...
By Techno Pride on 5/17/2009 7:05:42 PM , Rating: 2
is on the Internet.




By synaps on 5/18/2009 8:48:33 AM , Rating: 2
with all the monitoring from more and more government and corporate entities, it's not going to be for long...

and as long as computers will exist, so will cyber-attacks. that's a reality, and it will never go away, no matter how much you focus on security or anti-cracker laws.

and yes, because most people are indeed stupid, and more importantly, ignorant (a lot of them don't even try to learn, nor care), these kind of child level attack will never go out of style.

oh.. and you'd think people would've learned by now, the difference between a cracker and a hacker..


"We basically took a look at this situation and said, this is bullshit." -- Newegg Chief Legal Officer Lee Cheng's take on patent troll Soverain

Related Articles













botimage
Copyright 2014 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki