It was only a matter of time, but facebook phishing scams have hit the wild in a big way.

At work we saw a number of emails from a facebookmail.com address (that’s where facebook e-mails come from), suggesting that you might want to add a friend.

The add a friend link actually sent you off to an isgreat.org domain, which had a facebook look-alike login page.

This was the closest that I’ve ever come to clicking on a phising link. I only stopped for two reasons

1. my work e-mail isn’t associated with facebook at all.
2. the name didn’t tempt me at all.

If it went to my real facebook account I might have been tempted (but sure won’t now).

The security adage – Don’t click on links in e-mails is definitely true. Even for facebook sending nice helpful e-mails with links.

This isn’t the only way that phishing is happening for facebook. See here, and techcrunch

This entry was posted on Wednesday, June 18th, 2008 at 1:22 am and is filed under Miscellaneous. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.