A number of Facebook users have sent us various inquiries reporting form They said your Facebook account was being closed and they didn't know why!
We have looked into the matter and at this point we can take up a topic that we cover again and again. This involves accessing user data or taking over existing Facebook user accounts. Cybercriminals are hiding behind this nasty scam. They pose as Facebook.Support or security and lure various users into a trap. Let us explain how they do this using an example:
- The fraudsters create a Facebook page and name it, for example, Facebook Security or, in this case, “Security / center”.
- For example, you use the initials of Facebook (fb) or the logo as your profile picture. This gives the page mentioned an official character.
- In the next step, they search through Facebook profiles of other site operators and - as in this case - share cover photos. Since cover photos are always “public”, this is very easy to do.
- From the moment the page mentioned shares the cover photo of the respective admin/site operator, they will also receive a notification and automatically follow the notice, which looks like this:
[vc_message message_box_color=”grey” icon_fontawesome=”fa fa-info”]
WARNING Closing Accounts!
Your account will be deactivated!
Your account has violated the Terms of Service and your account will be permanently terminated.
In order not to block the account, please verify your account.
Please confirm your account here:
└► http://fb-help-aus.at.ua/confirmation-account.html… (Editor's note: DO NOT CLICK!)
If you are unable to re-verify this account, we will be forced to permanently close your account.
Thank you for improving our service.
Facebook™ Security
[/mk_info]
It is stated here that Facebook would deactivate the page because it violates Facebook's community standards. Of course, this is a lie made up by fraudsters. They also claim that you get the opportunity to verify and confirm the account. To do this you “just” have to follow a link.
If you follow this link, the user will end up on the following website, which is outside of Facebook. During our analysis, our Kaspersky Internet Security directly recognized a phishing web address.
This fraud method hides a fake Facebook login page. That page looks as if it were a Facebook login page. If you were to enter your data here, i.e. your email address and your Facebook password, they would end up directly in the hands of the fraudsters. In this case, the respective account would be taken over and, in addition to the private profile, the fraudsters would also have access to all pages and groups where the user had admin rights.
Notes:
1) This content reflects the current state of affairs at the time of publication. The reproduction of individual images, screenshots, embeds or video sequences serves to discuss the topic. 2) Individual contributions were created through the use of machine assistance and were carefully checked by the Mimikama editorial team before publication. ( Reason )