May 3, 2009

Facebook hit with phishing attacks again

Facebook stopped a phishing attack last Thursday. It was the second day in a row that Facebook was hit with a worm on the site that lured people to a fake Facebook page and prompting them to log in.

Unsuspecting Facebook users get a message from a friend urging them to "check this out" and including a link to a Web page that appears to be a Facebook log-in page, but it is a fake site that steals their information when they type in their username and password. The worm also sends a copy of the message to the infected Facebook member's contacts.

In the latest attack, the Web address was "FBStarter.com." In Wednesday's attack, the address was "BAction.net."

The attacks were stopped within a few hours in each case.

Link