Tuesday, March 28, 2023
LetsAskBinu.com
  • Home
  • Cybersecurity
  • Cyber Threats
  • Hacking
  • Protection
  • Networking
  • Malware
  • Fintech
  • Internet Of Things
No Result
View All Result
LetsAskBinu.com
No Result
View All Result
Home Cybersecurity

Beware! Facebook accounts being hijacked via Messenger prize phishing chats

Researcher by Researcher
February 2, 2022
in Cybersecurity
0
Beware! Facebook accounts being hijacked via Messenger prize phishing chats
189
SHARES
1.5k
VIEWS
Share on FacebookShare on Twitter


Fb customers are being warned of a phishing marketing campaign that tries to interrupt into accounts, disguised as a Fb Messenger chat from a buddy.

Finland’s Nationwide Cyber Safety Centre (NCSC-FI) has raised the alarm about an energetic marketing campaign seen within the nation, however presumably equally able to working elsewhere on the earth, the place Fb customers are duped into handing over credentials that will permit a whole stranger to interrupt into their account.

The assault works like this:

  • The meant goal receives a message from a buddy through Fb Messenger.  The buddy asks for the goal’s cellphone quantity. Unbeknownst to the focused consumer, it’s not their actual buddy who’re speaking with them through Messenger, however somebody who has hijacked their buddy’s account.
  • The “buddy” tells the goal that they want their cellphone quantity to enter them right into a lottery contest or prize draw, and {that a} verification code shall be despatched to the cellphone quantity’s proprietor through SMS.
  • The “buddy” asks for the code.
  • The cellphone quantity and authentication code is sufficient for the so-called “buddy” to log into the focused consumer’s account, and alter the password and related e mail deal with.
  • Now in a position to pose convincingly because the focused consumer, the “buddy” makes an attempt to rip-off associates of the focused consumer – and so it continues…

In some instances, in keeping with NCSC-FI, the rip-off has prolonged to request bank card or banking data with the pretence that it’ll assist switch a prize fee into the sufferer’s account.

In a screenshot shared by NCSC-FI, messages are proven coming from an attacker which ask for a cell quantity to enter a contest, and to anticipate a verification code to be despatched through SMS.  A minute later, the attacker says that an 8,100 Euros prize has been received by the pair, and that the code is required to obtain the funds.

So what is the recommendation?  I am afraid you might not prefer it: you should not belief Fb messages from anybody, together with individuals you already know.  As a result of everytime you obtain a message, you can’t ensure that it actually was from the one who claims to have despatched it – all you would possibly know (and this is not even at all times the case) is that it was their account that despatched the message.

So, if somebody says one thing to you that’s out of character, or asks you to do one thing or for private data that they would not usually request, then deal with the communication with suspicion.  Possibly make contact with the individual you imagine is contacting you through a distinct technique to hunt reassurance that it’s who you suppose it’s who’s contacting you.

And if somebody asks you to ahead a safety verification code you need to at all times refuse.

Though these explicit assaults have been reported as occurring in Finland, there isn’t a technical motive why they could not be happening in different components of the world, and utilizing totally different languages.

Every so often, customers have fallen right into a false sense of safety when being scammed in their very own language as a result of they’re so used to phishers and identification thieves concentrating on main languages corresponding to English.



Source link

Related articles

How to Secure Your GitHub Account With Two-Factor Authentication

How to Secure Your GitHub Account With Two-Factor Authentication

March 28, 2023
Microsoft: No-Interaction Outlook Zero Day Exploited Since Last April

Microsoft: No-Interaction Outlook Zero Day Exploited Since Last April

March 28, 2023
Tags: accountsBewarechatsFacebookhijackedMessengerphishingprize
Share76Tweet47

Related Posts

How to Secure Your GitHub Account With Two-Factor Authentication

How to Secure Your GitHub Account With Two-Factor Authentication

March 28, 2023
0

GitHub wants you to protect your account with the right type of authentication. Image: Rubaitul Azad/Unsplash GitHub is now prompting...

Microsoft: No-Interaction Outlook Zero Day Exploited Since Last April

Microsoft: No-Interaction Outlook Zero Day Exploited Since Last April

March 28, 2023
0

Microsoft says it has evidence that Russian APT actors were exploiting a nasty Outlook zero-day as far back as April...

Attackers Deploy New IcedID Variant

Attackers Deploy New IcedID Variant

March 27, 2023
0

A pair of threat groups are using a new variant of the pernicious IcedID malware in various email campaigns that...

‘Grim’ Criminal Abuse of ChatGPT is Coming, Europol Warns    

‘Grim’ Criminal Abuse of ChatGPT is Coming, Europol Warns    

March 27, 2023
0

Criminals are set to take advantage of artificial intelligence like ChatGPT to commit fraud and other cybercrimes,Europe’s policing agency warned...

Sentra Raises $30 Million for DSPM Technology

Intel Co-founder, Philanthropist Gordon Moore Dies at 94

March 27, 2023
0

Gordon Moore, the Intel Corp. co-founder who set the breakneck pace of progress in the digital age with a simple...

Load More
  • Trending
  • Comments
  • Latest
This Week in Fintech: TFT Bi-Weekly News Roundup 08/02

This Week in Fintech: TFT Bi-Weekly News Roundup 15/03

March 15, 2022
QNAP Escalation Vulnerability Let Attackers Gain Administrator Privileges

QNAP Escalation Vulnerability Let Attackers Gain Administrator Privileges

March 15, 2022
Supply chain efficiency starts with securing port operations

Supply chain efficiency starts with securing port operations

March 15, 2022
A first look at threat intelligence and threat hunting tools

A first look at threat intelligence and threat hunting tools

March 15, 2022
Beware! Facebook accounts being hijacked via Messenger prize phishing chats

Beware! Facebook accounts being hijacked via Messenger prize phishing chats

0
Shoulder surfing: Watch out for eagle‑eyed snoopers peeking at your phone

Shoulder surfing: Watch out for eagle‑eyed snoopers peeking at your phone

0
Remote work causing security issues for system and IT administrators

Remote work causing security issues for system and IT administrators

0
Elementor WordPress plugin has a gaping security hole – update now – Naked Security

Elementor WordPress plugin has a gaping security hole – update now – Naked Security

0
How to Secure Your GitHub Account With Two-Factor Authentication

How to Secure Your GitHub Account With Two-Factor Authentication

March 28, 2023
This Week in Fintech: TFT Bi-Weekly News Roundup 08/02

This Week in Fintech: TFT Bi-Weekly News Roundup 28/03

March 28, 2023
Microsoft: No-Interaction Outlook Zero Day Exploited Since Last April

Microsoft: No-Interaction Outlook Zero Day Exploited Since Last April

March 28, 2023
Samsung Unveils Ultra-Wideband Chipset

Samsung Unveils Ultra-Wideband Chipset

March 28, 2023

Recent Posts

How to Secure Your GitHub Account With Two-Factor Authentication

How to Secure Your GitHub Account With Two-Factor Authentication

March 28, 2023
This Week in Fintech: TFT Bi-Weekly News Roundup 08/02

This Week in Fintech: TFT Bi-Weekly News Roundup 28/03

March 28, 2023
Microsoft: No-Interaction Outlook Zero Day Exploited Since Last April

Microsoft: No-Interaction Outlook Zero Day Exploited Since Last April

March 28, 2023

Categories

  • Cyber Threats
  • Cybersecurity
  • Fintech
  • Hacking
  • Internet Of Things
  • LetsAskBinuBlogs
  • Malware
  • Networking
  • Protection

Tags

Access attack Attacks banking BiWeekly bug Cisco cloud code critical Cyber Cybersecurity Data Digital exploited financial Fintech Flaw flaws Google Group Hackers Krebs Latest launches malware Microsoft million Network News open patches Payments platform Ransomware RoundUp security Software Stories TFT Threat Top vulnerability warns Week

© 2022 Lets Ask Binu All Rights Reserved

No Result
View All Result
  • Home
  • Cybersecurity
  • Cyber Threats
  • Hacking
  • Protection
  • Networking
  • Malware
  • Fintech
  • Internet Of Things

© 2022 Lets Ask Binu All Rights Reserved