Be on the lookout for a current spate of phishing tactics spreading on Facebook via the chat feature.
The attack employs similar methods to those used by past scams, using hijacked user accounts to send chat messages with a generic message and a link to a familiar-looking Facebook phishing page. Of course, if you actually click the link and enter your details on the fake Facebook login page, the hackers steal your e-mail and password and direct you on to the real Facebook.
Once your account has been compromised, hackers use it to perpetuate the scam by spamming your friends in chat. Automated bots handle the heavy lifting of pestering your contacts. At least one of the messages comes in the format “ROFL this you?!” with a phishing link, but this particular vulnerability may take other forms, so be sure to use caution when receiving any remotely suspicious chat messages from your Facebook contacts.
Facebook typically aggressively pursues phishing scams like this one, so hopefully it won’t be plaguing users for too much longer. Until then, please use caution when using chat. Have you spotted any variants of this scam?
Article from: www.Mashable.com