Facebook Phishing Scam Claims You’ve Violated Policy

Another day, another Facebook-based phishing scam looking to snatch all of your personal information (including bank account info) and use it for nefarious purposes.

The latest scam to hit the network comes in the form of messages sent to users’ inboxes. These are not simply spam messages that will get caught up in that “other” inbox that Facebook reserves for non-important communications. These messages may come from compromised accounts, ones that could be given access to your inbox.

If you receive one of these scam messages, it’ll look like this:

WARNING: Your account is reported to have violated the policies that are considered annoying or insulting Facebook users.system will disable your account within 24 hours if you do not do the reconfirmation. Please confirm your Facebook account below:

If the ridiculous assertion that you’ve “annoyed users” doesn’t immediately throw you off, there’s a link.

Upon clicking, a page will prompt users to enter their Facebook account info and password. It then asks you to confirm which webmail service you use to sign-in to Facebook (getting more suspicious). Finally, it drops the big request – your credit card info. At this point, you should definitely realize you’ve been duped and stop entering information.

This scam is similar to another one we reported on earlier this month that also involved private messages from “The Facebook Security Team.” Except we all know that the real Facebook Security team doesn’t send out messages to specific users asking them to verify account details. Both scams warn users that their accounts may be suspended for some sort of unspecified violation of the terms of service.

[GFI via The Next Web]