BitDefender researchers have detected an IM-based spam wave automatically sent to accounts which promises a “hot date” if the Facebook’s users access the typosquatted link, as depicted below. The fake Web site, which reproduces the genuine Facebook site extremely well, collects the log-in credentials using a php script.
Users should pay extremely close attention to details, such as Web sites names and avoid following links received in e-mail or IM spam. Failing to do so might result in stolen log in credentials. Phishers could exploit them to harvest e-mail addresses, retrieve other contact details stored in accounts or post spam messages or malware disguised behind banner advertising.