Hackers Found Phishing for Facebook Credentials

  /     /     /  
Publicated : 23/11/2024   Category : security

Hackers Found Phishing for Facebook Credentials


A very realistic-looking login prompt is designed to capture users Facebook credentials, researchers report.


A recently spotted phishing campaign is seemingly intended to steal victims Facebook login credentials with a fake pop-up prompt designed to look like a legitimate login portal.
Researchers with Myki, a password management company, were alerted to the threat when users complained the tool wasnt auto-completing passwords on popular websites as usual. Upon investigation, the researchers began to think users were being deceived via malicious websites.
The attack is based on the concept of being able to reproduce a social login prompt in a very realistic format inside an HTML block, says Myki co-founder and CEO Antoine Vincent Jebara. The status bar, navigation bar, shadows, and content are reproduced to look like a real prompt.
When victims visit a malicious site, they are asked to authenticate using a social media account – in this case, Facebook. When they choose a login method, the site displays a fake login prompt. Users who fill in their credentials will automatically send their information to attackers.
Jebara recommends a quick check to test for fraudulent pop-up windows: Try to drag the pop-up away from the window it is displayed in, he advises. If dragging it out fails and part of the pop-up disappears beyond the edge of the window, its a sign the pop-up is fake.
Read more details
here
.
 
 
Join Dark Reading LIVE for two cybersecurity summits at Interop 2019. Learn from the industrys most knowledgeable IT security experts. Check out the
Interop agenda
here.

Last News

▸ ArcSight prepares for future at user conference post HP acquisition. ◂
Discovered: 07/01/2025
Category: security
▸ Samsung Epic 4G: First To Use Media Hub ◂
Discovered: 07/01/2025
Category: security
▸ Many third-party software fails security tests ◂
Discovered: 07/01/2025
Category: security


Cyber Security Categories
Google Dorks Database
 		Exploits Vulnerability
 		Exploit Shellcodes

CVE List
 		Tools/Apps
 		News/Aarticles

Phishing Database
 		Deepfake Detection
 		Trends/Statistics & Live Infos



Tags:
Hackers Found Phishing for Facebook Credentials