maandag 31 augustus 2009

Facebook users targeted by hackers in successful phishing attack

Facebook's 200 million users have been targeted by hackers in the latest "phishing" scam to hit the social networking website.

Internet fraudsters stole the passwords of a number of members on Thursday in a successful attack, a Facebook spokesman said.
Users were tricked into clicking on links posted from accounts that had been taken over by the hackers.

These brought up fake Facebook log-on pages which requested the visitors re-enter their usernames and passwords. Anyone who did so effectively handed the conmen the keys to their profile.
It is not clear how many accounts have been compromised, but Facebook said it was working to block those taken over by the hackers and minimise the fallout. All references to the fake domains – which include www.151.im, www.121.im and www.123.im – have been deleted from the website.

Facebook's security team believes the hackers intended to wait until they had garnered a large number of details before taking over the accounts to spam other members with adverts for fake pharmaceuticals and other products.

Social networks are particularly vulnerable to phishing attacks – which can also be used to steal users' identities – because members tend to be less suspicious of messages apparently sent by their friends than they are of unsolicited emails.

In March Facebook suffered a spate of security breaches, many originating from bogus applications that contained malicious software.

Facebook users were also affected by a variant of the Koobface virus, a worm that first appeared in December last year.

Geen opmerkingen:

Een reactie posten