• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • February 28th, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Cyber Crime
Scams and Fraud

Hackers Target Users with “Facebook Account Recovery” Phishing Message

May 27th, 2015 Waqas Scams and Fraud 0 comments
Hackers Target Users with “Facebook Account Recovery” Phishing Message
Share on FacebookShare on Twitter

Researchers have spotted a j.mp shortened URL being shared by fake accounts within Facebook recently targeting users with phishing link.

Hackers are sending a spam messages from a phony account stating to be “Facebook recovery” notifying users that their accounts committed abuse and will likely be disabled if they don’t act on given commands.

After a user entered their identifications and clicked Log In, data is posted to recovery.php, and then users are redirected to a payment page, which asks for his/her full name, credit card details, and billing address.

[must url=”https://www.hackread.com/facebook-login-removed-email-malware/”]Facebook Users Hit With ‘Your Facebook Login Is Removed’ Malware Email[/must]

facebook-account-recovery-phishing-message-5

A screenshot showing the message sent to users’ inbox on Facebook:

facebook-account-recovery-phishing-message

After clicking the j.mp link users are redirected to following page:

facebook-account-recovery-phishing-message-2

This is the payment page where Facebook users are redirected:

facebook-account-recovery-phishing-message-3

It is astonishing to see an account claiming to be a legit Facebook recovery account is asking for reimbursements, this is in fact the intent of the phishers.

[must url=”https://www.hackread.com/guy-removes-blackhead-facebook-malware/”]‘Guy Removes Blackhead’ Post Delivers Malware to Facebook Users[/must]

While looking at the stats for the j.mp URL researchers discovered that it didn’t yield that many clicks from the time of its creation up to the present. Sometimes no clicks are recorded means the URL is likely not to be shared making it less visible to the spammers. Less visibility also means that possibly less companies would be able to block it. However, majority of the clicks are mostly from Asian countries and the United States.

Researchers did a simple search on Facebook for accounts that may contain the string “Facebook recovery”. To date, researcher found more than 40, most of them are dormant and no sharing of questionable links on Facebook. Some of them go even as far as offering technical support for fake technical support scams.

When running a check on the number advertised number –1-888-901-5314— it was discovered that several users reported calling the number asking for help and were charged almost $150 just to get their accounts deleted, reports Malwarebytes.

facebook-account-recovery-phishing-message-5

This contact number is also related to a dubious antivirus support channel for McAfee. The page itself no longer exists but a cached copy was retrieved.

facebook-account-recovery-phishing-message-4

If you see posts on your feed that appear similar to the Facebook post we just now discussed, the best thing to do is to avoid it and warn your network about a possible spam campaign.

[src src=”via” url=”https://blog.malwarebytes.org/fraud-scam/2015/05/facebook-recovery-accounts-share-phishing-link-offer-tech-support/”]Malwarebytes[/src]

  • Tags
  • Facebook
  • hacking
  • Phishing
  • Phishing Email
  • Privacy
  • Scammers
  • Social Media
Facebook Twitter LinkedIn Pinterest
Previous article Website of Nepali Embassy in US hacked, left with anti-American content
Next article This Smartphone app can be a potential life saver during earthquake
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related Posts
Online scams: How to give scammers a taste of their own medicine

Online scams: How to give scammers a taste of their own medicine

Facebook sues developer of data scraping extensions for Chrome

Facebook sues developer of data scraping extensions for Chrome

Fake Cyberpunk 2077 Android App Delivering Ransomware

Fake Cyberpunk 2077 Android App Delivering Ransomware

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
Microsoft release open-source CodeQL queries to hunt SolarWinds hacks
Microsoft

Microsoft release open-source CodeQL queries to hunt SolarWinds hacks

Hackers using malicious Firefox extension to phish Gmail credentials
Security

Hackers using malicious Firefox extension to phish Gmail credentials

Apple Glass may feature 3D Audio and Self-Cleaning in new patent
Technology News

Apple Glass may feature 3D Audio and Self-Cleaning in new patent

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us