Facebook “password reset” scam hits inboxes

Yet another “password reset” scam has been hitting the inboxes of Facebook users lately, warns McAfee:

The email contains a zipped file that supposedly contains the new password, but it’s actually a password stealer that could steal not only the username and password to the users’ Facebook account, but also credential to other accounts – including online banking ones.

The scam relies on big numbers. Just think about the 400 million Facebook users in the world – even if the most microscopic percentage of those installs the malware, that’s still a good day’s work for criminals.

Once again, users are reminded that Facebook would never send an email like this, and that poor grammar and phrase construction is a sure way of detecting malicious emails.




Share this