Phishing for Passwords
The BBB has published an article on the latest phishing scam on Facebook.
How the scam works: You receive an email that appears to come from Facebook and says something like this: “Recently, we discovered a breach of our Facebook Community Standards on your page. Your page has been disabled for violating Facebook Terms. If you believe the decision is incorrect, you can request a review and file an appeal at the link below.” The message may also state that if you don’t act in the next 24 hours, Facebook will delete your account permanently.
The email includes a link that appears to lead to Facebook.com. Because you want to keep your account, you may think about clicking - however, you must stay calm and take a closer look. On closer inspection, you’ll likely find signs of a scam. These include typos, email sender addresses that aren’t related to Facebook, and, if you hover over the link in the email (without clicking on it), you will discover that it doesn’t point to Facebook’s website.
Another version of this Facebook phishing scam targets Facebook business pages with a threat to deactivate the account due to a Terms of Service or Community Standard violation. The message appears to come from Meta Business Support and requires the administrator to confirm the account by clicking a link, or it will be permanently deleted.
If you click the link, you’ll likely be taken to an official-looking page and prompted to complete a form to appeal the policy violation. You’ll be asked for your login email, phone number, name, and other details. The page will ask you to confirm your password when you hit submit. If you do, scammers will have all the information they need to hack your account.
Read the full article here.