'New Password' E-mail Scam Plagues Facebook Members

by Amar Toor on March 18, 2010 at 09:21 AM

If you get an e-mail with a subject line that reads, "Facebook password reset confirmation customer support," you can just go ahead and hit the delete button. That's because, if you open it, you may fall prey to the latest scam to hit Facebook, and divulge intensely personal password or banking information. The malicious e-mail bears an attachment that, the message claims, contains your new Facebook password. What it really contains, though, is a form of malware that can swipe not only your real Facebook password, but rather any username and password combination stored on your computer.

The careful reader will notice a few tell-tale signs of the e-mail's inauthenticity; Facebook never sends out e-mails like these, and even if it did, it wouldn't use the awkward grammar and lazy punctuation that are all over these messages. Clearly, though, enough people are falling for it to warrant concern. According to McAfee labs, this e-mail has become the "sixth most prevalent piece of malware targeting consumers in the last 24 hours." McAfee also estimates that tens of millions of malicious e-mails have been sent out across Europe, the U.S. and Asia since the pestilence began on Tuesday. Considering that there are about 400 million users on Facebook, McAfee malware expert Dave Marcus estimates that hackers could successfully infect millions of computers. As he told Reuters, "If you get 10-percent success, that's 40 million." So, just be careful about it, and don't let your computer be one of them. [From: McAfee; via: CNET and Reuters]

http://xml.channel.aol.com/xmlpublisher/fetch.v2.xml?option=expand_relative_urls&dataUrlNodes=uiConfig,feedConfig,entry&id=832312&pid=832311&uts=1268947363

http://cdn.channel.aol.com/cs_feed_v1_6/csfeedwrapper.swf

Ways to Spot E-mail Scams

Getty Images

Ways to Spot E-mail Scams

The increasing flood of e-mail hitting your inbox can lower the guard of even the most cautious person. In the rush to keep up with important notes, it's easier than ever to fall prey to the scam artists and identity thieves who lurk online.

E-mail scams and phishing attempts evolve constantly, hoping to take advantage of the latest trends and current events. Although the e-mails change, the people behind them inadvertently send up the same warning signs again and again. We dug through mountains of spam to find the most prevailing trends. We've collected some actual scam e-mails and highlighted the warning signs to help you spot a hustle the next time one lands in your inbox.

Ways to Spot E-mail Scams

1. Requests for personal information
No legitimate organization will ask for your social security, bank account or PIN number via e-mail – and none will include a link, sending you to a form to enter it. No matter how authentic these emails may look, ignore 'em.

Ways to Spot E-mail Scams

2. Watch for typos or spelling mistakes
Scam artists are street smart, but many flunked basic grammar (or barely speak English). Look for mistakes like inappropriate hyphens or confusing "your" and "you're." If the note has multiple typos or grammatical errors, odds are it's not legitimate.

Ways to Spot E-mail Scams

3. Clickable Web links in e-mails
Don't trust links to Web sites in e-mails. What might look like a legitimate address is often linked to a third-party site that looks official, but is actually run by thieves and scammers. These are the fast track to identity and financial theft.

Ways to Spot E-mail Scams

4. 'Market research' or surveys that ask you for personal information.
Disguising scam e-mails as marketing is a classic ploy. You'll be asked to fill out a survey or enter a contest – requiring you to give personal information or "log on" to your account. Once you've done so, the scammers can use it themselves.

Ways to Spot E-mail Scams

5. Stock tips from random people or companies
Got a "hot stock tip" via e-mail? It's probably a "pump and dump" scheme. The sender already owns shares – and when you and others act on the "tip," the stock price soars and he sells fast – leaving you with virtually worthless shares.

Ways to Spot E-mail Scams

6. Attachments in e-mails from anyone you don't know
It should be common sense, but just in case, we'll remind you again: Don't open an attachment from someone you don't know – even if it appears to be your bank or credit card company. It's almost always a virus or spyware meant to steal your personal information.

Ways to Spot E-mail Scams

7. Wordless e-mails
Some legitimate looking "e-mails" are actually just images. The danger with these is that clicking anywhere in the body takes you to a suspect Web site – where you may be fooled into entering personal information, or the scammer may slip spyware onto your machine.

Ways to Spot E-mail Scams

8. Outdated information
Some scammers like to pose as technical- or customer support from a company you associate with – but fail to keep up with current events. For example, in the example above, the senders forgot that Earthlink bought Mindspring in 2000.

Ways to Spot E-mail Scams

9. Red-flag phrases
If you see the phrases "verify your account," "you have won the lottery" or "if you don't respond within XX hours, your account will be closed," it's a scam – every time. Hit the delete button and don't look back.

Ways to Spot E-mail Scams

Tags: facebook, password, passwords, scam, scams, scams and frauds, ScamsAndFrauds, socialnetworking, top, virus, viruses, web

Comments

BarbaraMar 20th 2010 2:41PM

Lowest Rank

I hate Face Book and would never opt in for any of their accounts. I just don't get why everyone is a follower instead of a leader. And if you have any idea bout your security, you should already know, NO ONE can change your pass word but YOU!!!! And why would you put any personal information on any of the sires. They all have been hacked at one time or another....Security my azz....

Dislike

Report

CliffMar 20th 2010 7:57PM

Neutral

I agree, I don't want nothing to do with Facebook. Too many issues and I don't believe in putting my life on a website such as Facebook.

Dislike

Report

LillianMar 20th 2010 3:02PM

Highly Ranked

Whether it's FaceBook or any other Email venue, everyone should know by now, with all the information that's been out there about emails, not to open emails such as these, or any from unknown senders. A little common sense goes a long way.

Dislike

Report

TomMar 20th 2010 4:14PM

Neutral

You can tell the email is FAKE by the bad English in the second line. (It's best not to tell you what the mistake is so as not to alert perpetrators.)

Dislike

Report

X.EmmettMar 20th 2010 5:02PM

Neutral

Scam or no Scam the site should be named, "FaceCrook".

Dislike

Report

AquilusMar 20th 2010 5:04PM

Neutral

my mother opened that by mistake and we got a virus that disabled Java and couldn't be removed with the basic virus removal tools. i ended up having to use ComboFix to get rid of it, which is risky business. anywhoo, it's not just spam, it's a virus carrier as well. but as tom stated, you can tell it's fake by the poor english, which is true of most spam emails. you'd think the spammers would learn to spell and punctuate properly to be more effective...hmm. of course those people that produce it are idiots anyway.

Dislike

Report

mattMar 21st 2010 2:38AM

Neutral

If you're stupid enough to read that misspelled drivel and STILL click the attachment, you deserve a virus. Take that money you would've spent on the new iPad and pay someone to cure your computer. And if you don't bother to read before you click download, you deserve it too. I really hate stupid people. If there are 40 million people who are willing to download a virus, then there are 40 million people we don't need in the world. I'm not perfect, but I'm not retarded either...
Let me tell you what I just finished clearing from my spam folder:
6 penis enlargers
a colon cleanser
I've won about 37 lotteries in the past two weeks
2 women looking to marry me. They assure me they're "very hots"
1 more penis enlarger

Dislike

Report

BlackBerry Bold 9900, 9930 Will Run BlackBerry OS 7

BlackBerry OS 7 Features Announced--But It Won't Run On Older Devices

Farewell, Internet

Interview with Digital Camera Inventor, Making Game Boy Music

Dinos and Trenches in '1916 - The War You Never Knew'

Farewell, Internet Apr 12th 2011 12:00PM

Angry Birds Rio for Symbian lands in Nokia's Ovi Store Apr 11th 2011 3:45PM

Kindlebility sends Web pages from your computer to your Kindle Apr 11th 2011 2:40PM

Auslogics Disk Defrag 3.2 gets smarter, faster Apr 11th 2011 11:00AM

Windows 8 App Store images leaked? Apr 11th 2011 10:00AM

Browse All

Popular
Commented

Coming soon

: Thomas Houston; Editor in Chief
: Amar Toor; Writer
: Matthew Zuras; Design Editor

: Leila Brillson; Features Editor
: Terrence OBrien; Senior Blogger
: Chad Mumm; Vid Guy

Meet the Team »

You Have Ten Seconds To Edit Your Facebook Comment. Get Cracking!

Home Recording 101: Breaking Down Basics, Synths, Software and Gear

Get your Switched fix on the go with our free iPhone and iPod Touch app!

Amar Toor: chinese premier, swiss yodelers http://t.co/38X1djlPUg

Chad Mumm: Stumptown is hard rocking some Flaming Lips right now.

Tim Stevens: Another killer issue of @EngadgetDistro, this one featuring @RealBenGilbert's exclusive on designing the Xbox One http://t.co/cGBYFAHm72

Chad Mumm: Seattle, you got some good food.

Hot on HuffPost Tech:

Web

Tech Tips

Advice

Media

'New Password' E-mail Scam Plagues Facebook Members

Ways to Spot E-mail Scams

Comments

Latest News

DLS News

The Team

Thomas Houston

Amar Toor

Matthew Zuras

Leila Brillson

Terrence OBrien

Chad Mumm

Hot Topics

Tech Tips

Basic Tech

Switched Mobile

Latest Tweets

Gadget News

Apple News

Game News

Notable

Our Favorite Sites

Tech News

Design

Web

More

Feeds

Hot on HuffPost Tech:

'New Password' E-mail Scam Plagues Facebook Members

Ways to Spot E-mail Scams

Share and Discuss

Comments

HuffPost AOL Social News Most Popular

Latest News

Notable

Our Favorite Sites

Tech News

Design

Web

More

Feeds