- 4chan hell raisers finding fame brings heat?
- The 10 dumbest mistakes network managers make
- NetApp quits bidding war in face of EMC opposition
- CompuServe closes after 30 years
- Google to launch open-source Chrome OS this year
Scammers are trawling Facebook for victims using a convincing twist on the notorious 'Nigerian 419' scam.
Normally, 419 scams are easy to spot and involve e-mail requests for money from supposedly rich individuals in countries such as Nigeria, from which the fraud gets its name. The latest Facebook attack is much craftier, however, because it hijacks the identities of real people known to Facebook members, asking for money under an apparently plausible guise.
An Australian news site reports that one Google Australian employee who was contacted using the social networking site by a person known to her, asking for $500 dollars to allow him to return home from Lagos, Nigeria, where he claimed to be stranded.
She became suspicious that the contact was bogus only after noting subtle irregularities in the fraudster's use of Australian English. "After chatting further, words such as "cell" instead of "mobile phone" tipped Wells off that she was not talking to her friend but someone who had taken over his account," the report said.
"Many Facebook users don't even know how many friends they have on the site, let alone what they are all doing and where they are, and this is providing the scammers with a new vector of attack" said Graham Cluley of Sophos, the company that unearthed this particular scam.
"Unfortunately this is just the latest skirmish in an ongoing battle taking place between Facebook users and cybercriminals intent on exploiting the site and its members for their own financial gain."
Social networking's insecurities are many-headed. Emails from domains such as Facebook are more likely to reach an individual's inbox because they come from trusted domains; hijacking such domains to create fake email accounts been one of the year's growing problems on webmail systems such as Google, Hotmail and yahoo.
As it is, Facebook users have a reputation for giving up personal information too easily, while such sites have also been under attack from a range of information-farming direct exploits.
A secondary problem is that social networking offers scammers the ultimate prize of being able to hijack the identity of a trusted person to execute fraud. The Facebook 419 scam is an example of this, using plausibility and a demand for a modest amount of money to overcome suspicion. If social networking systems become infected by such trust-based fraud to any degree they will likely become unviable in their current form.
The Leader in Network Knowledge
Comments (18)
idiots????By Anon on July 3, 2009, 4:45 amUnfortunately, its the "idiots" who never knew this existed in the first place....everyone says, "be careful", but no-one tells you what to be careful of....Ask...
Reply | Read entire comment
That's whyBy Anonymous on March 12, 2009, 8:14 amFacebook added the function to block someone. It's not an open networking website so you can block anyone easily.
Reply | Read entire comment
scammersBy Anonymous on March 11, 2009, 10:36 pmmy surprise is I knew somebody in a single web site the perfect until I discovered the suppost person is was nigerian scammer , my surprise is the pictures that...
Reply | Read entire comment
Facebook ScamsBy Anonymous on February 8, 2009, 5:35 amI had this done to me yesterday, they must have got my password from a phishing... They managed to get into my facebook account and send messages to all my friends...
Reply | Read entire comment
This happened to me! By Anonymous on December 29, 2008, 12:42 amSomeone stole my password, stole my facebook account and has been harrassing all of my "friends" for $600 to get me home from London. The worst part is, I have no...
Reply | Read entire comment
View all comments