If this happens, strangers have stolen the login details and thus gained access to the account. In the worst case, the account is lost. A typical phishing trap!
Note: Users who clicked on the video and entered their real login details should change their Facebook password IMMEDIATELY!
Train wreck phishing in Germany and Austria
We have just received information from several users that this well-known scam has picked up speed again. Users are confronted with dramatic photos of train accidents via various channels. You are also welcome to make personal comments, such as “My friend was on the train!”

This creates the sensational impression that this is a current accident. The personal connection causes an immediate impact, which causes people to click on the post or a button offered and carelessly reveal their Facebook login details in the drop-down menu that then appears.

Such phishing traps are often shared in groups where contributions are not approved. By the time the administrators realize that there is a phishing post in the group, numerous users have often jumped on it and fallen for it badly.
Local reference increases the willingness to click
The local connection is also typical for this type of phishing trap. In the example above, a post was shared in a Bochum flea market group that referred to a train accident in Bochum, i.e. a direct local reference was made. Something like this naturally causes stress in the reader, because the closer an accident occurs, the greater the risk of being directly or indirectly affected. And of course everyone is curious when such an accident is said to have occurred in their own city. We currently have reports from Bochum, Berlin and Graz. Either the messages were posted in local groups or Facebook advertising functionality was used, which allows ads to be tailored to the user to whom they are shown. Even a current date is not a reliable indication
Stay suspicious!
There are some sure signs that these train wrecks are a phishing trap.
Anyone who comes across these posts on Facebook and has followed them should ask themselves why they should log in to Facebook again if they just came from Facebook. Strange, isn't it?
Is there a second source for this message?
Such serious accidents happen, but fortunately only very rarely. However, if such an accident occurs, Facebook is definitely not the first and only medium to report on it, even if no fire and ambulance sirens can be heard outside.
In this case, safe sources of information include, for example, reputable news portals and the radio. A simple Google search with the keyword train accident and the city in which the train accident is said to have taken place usually helps. If there are no current search results with reports from other media, then generally nothing has happened.
Use fantasy login
A very good trick to recognize such phishing traps is to log in with a fantasy login. So instead of the real username, the real email or phone number and the correct password, just enter nonsense like hgaadasfjg@ookke.com and the password opipokm#99. If this works, it is clear that it is not a real Facebook login. Sometimes you have to try twice.
Check URL
As with the vast majority of traps, it is essential to take a look at the URL. Does it match the alleged sender or is there some cryptic gibberish? What is the domain name? The fake can often be identified here.
In the example, the domain is .cfd. This is a new business domain that stands for ClothingFashionDesign and is usually used by corresponding companies. Theoretically, there is also the possibility that fraudsters take a reputable, real URL and register the name with a business domain that has nothing to do with the industry of the original URL and has therefore not been blocked prophylactically by the company. So you really have to look very closely

Who posts something like that?
It is real-existing users who share such posts with train accidents or other disasters or put them in groups. You have already fallen into such a phishing trap once, your accounts have been taken over and criminals have access to the entire profile. All friends can be addressed with further phishing traps via messenger. And because they come from a friend, others fall for them all the more easily. Phishing posts can be sent to any group the victim is a member of. If the victims were regularly active there and are known, that also increases credibility.
You can find more information about phishing on Facebook here .
Already read? Facebook phishing! Be careful of sites that tag you
If you enjoyed this post and value the importance of well-founded information, become part of the exclusive Mimikama Club! Support our work and help us promote awareness and combat misinformation. As a club member you receive:
📬 Special Weekly Newsletter: Get exclusive content straight to your inbox.
🎥 Exclusive video* “Fact Checker Basic Course”: Learn from Andre Wolf how to recognize and combat misinformation.
📅 Early access to in-depth articles and fact checks: always be one step ahead.
📄 Bonus articles, just for you: Discover content you won't find anywhere else.
📝 Participation in webinars and workshops : Join us live or watch the recordings.
✔️ Quality exchange: Discuss safely in our comment function without trolls and bots.
Join us and become part of a community that stands for truth and clarity. Together we can make the world a little better!
* In this special course, Andre Wolf will teach you how to recognize and effectively combat misinformation. After completing the video, you have the opportunity to join our research team and actively participate in the education - an opportunity that is exclusively reserved for our club members!
Notes:
1) This content reflects the current state of affairs at the time of publication. The reproduction of individual images, screenshots, embeds or video sequences serves to discuss the topic. 2) Individual contributions were created through the use of machine assistance and were carefully checked by the Mimikama editorial team before publication. ( Reason )

