Facebook has already reacted to the going on phishing scheme happening world wide.
The facebook team has already released their statement through their Facebook Security page stating that “There’s another spoofed email going around that claims to be from Facebook and asks you to open an attachment to receive a new password. This email is fake. Delete it from your inbox, and warn your friends. Remember that Facebook will never send you a new password in an attachment. ”
Reports suggest the scheme continued to spread on Friday.
The messages claim to be from Facebook, with a return address that looks legitimate. A message sent twice to a CNN.com staffer reads:
Hey [user's name],
Because of the measures taken to provide safety to our clients, your password has been changed. You can find your new password in attached document.
Thanks,
The Facebook Team.
It is said that the link Is a password stealers in which they let the user logged in to the fake web page and after the user clicked the Login button, the username and password will be directly send to the one responsible for the email spam.
According to facebook, they never send users a new password in an attachment.
To be able to be secured, don’t just click anything in your email if the sender couldn’t be trusted or if its pretty obvious that it’s a scam.
React- yes. That’s all Twitter and Facebook seem to be doing to their scam-a-day dilemma. Here at VeriSign we prefer proactive campaigns again fraud and hackers. Ensuring a secure environment for your customers is essential these days especially when you are responsible for their personal, and financial information. Employing the highest form of security through Extended Validation SSL (the green url bar, visual cue that you are at a legitimate website and proven to thwart phishing attempts)
Now that would be the reaction I would applaud.