OFFICIAL SECURITY BLOG
May 5, 2014 | BY Jovi Umawing
Over the weekend, I received several legitimate Facebook notifications informing me that my name (and names of others from this friend’s network) were included in spammy posts, claiming that I must try to activate my profile because an impending deactivation of accounts will take place two weeks from now.
The notification (which also shows the content of the spam post) looks something like this:
The source post originated from an obviously fake profile called Facebook Announcement 2K14, which was created as a community page some time last month.
If you accept its description, “All posts here are true!”, as truth without batting an eye, then it’s highly likely that you’ll fall for whatever this account posts.
In another cases, the spammy post originated from this fake account: FbCeo Mark Zuckerberg, which was created just three days ago:
Below are the messages being propagated by these accounts, respectively:
“Do this before your account gets deactivated!” posts on Facebook are not really new; however, what sets this apart is what appears to be the core target of the scam: most of them are Filipinos. Their objective? ‘Like’ harvesting and profiting via link visits.
When unknowing users followed the directions from these post, any or all of the following may happen without user consent:
Today, while writing this, a close friend and I continue to receive Facebook notifications telling me that several of our contacts have been duped.
I reported the fake profiles to Facebook and encouraged my friend to do the same. Hopefully, we won’t be the only one pushing for the site to be removed.
If you, dear Reader, have seen something similar or encounter similar fake pages in the future, don’t hesitate to use Facebook’s handy Report/Block… feature. Tinypaste, the service hosting the pages where the scripts are, was also informed about this scam.