Facebook has been keeping its status as a favorite with Internet criminals whose specialty is to still social media accounts, reveals Kaspersky Labs. In the first quarter 2014, 10.85% of sites the security firm spotted were ones who were disguised as the popular social network. Out of the total sites (In any category, not just social media sites), Yahoo fakes were the only one who created more phishing alerts.
It turns out that fake Facebook pages can now be found in a host of languages: English, French, Portuguese, Italian, Turkish, Arabic and many more. Unauthorized access to Facebook accounts or to any other social media network may be used to send a malicious code or phishing links. Net criminals also use stolen accounts to send spam to the afflicted contact list and to post spam on friends’ walls. Another use is sending out messages asking friends for emergency financial aid. Hijacked accounts can also be used to gather information about sole users towards a focused attack in the future.
Smartphone and tablet owners who visit social network sites from their mobile devices are also in the danger of personal information theft. It appears that in some of the mobile web browsers tend to hide the site’s URL upon visiting sites, a fact that makes it hard on the users to spot fake sites.
“Net criminals have developed some ways to lure their victims into pages with phishing content. They send out links to phishing pages through Email or social networks, use banners stationed in content of external advertisers. Victims are often tempted by some ‘interesting content’ that is promised, and when users follow a published link, they arrive into a fake page asking them to fill in details before watching a page. If the user enters his or hers details, his information passes on directly to those criminals”, explains Nadza Demidova, web content analyst in Kaspersky Labs.