i2 Security Blog

Keeping you upto date on the world of IT Security

i2 Security Blog - Keeping you upto date on the world of IT Security

New Year Selena Gomez Facebook Scam

So its the start of 2012 and the first of many Facebook scams has begun.  It involves Selena Gomez and tempts you to see some ‘possibly’ naughty video leaked.

The link includes the words:

Selena Gomez Caught On (LEAKED Tape) 
 you will lost your all respect for Selena Gomez after watching this


Clicking the wall post link takes you to the following page designed to look like Facebook:

Clicking the play button loads a “share” box allowing you to spread the scam message to your friends. The following survey scam also loads:

**Note – Scams like this often use multiple domains, so you may see a variation in the landing pages and scam messages.

Dealing with the Scam:

If you did make the mistake of sharing the scam link, then you are now spamming your friends with the very same message. Clean-up your newsfeed and profile to remove references to the scam. (click the “x” in the top right hand corner of the post).

Never complete surveys to unlock videos or other content on Facebook. Scammers use these tricks to either spread malware, obtain personal identification or earn commissions from marketing companies. Don’t pad their pocket and possibly open yourself up to harm!

Some of the surveys require you to download files to your computer. Never do this! If you did so in error, then run a complete system scan with a good anti-virus software program. The I.Q. Quiz scam has been around for a while, and it typically requires you to enter your cell phone number to receive the results. The scammers then bill you for premium services. Keep an eye on your phone bill for bogus charges.

TopShop Facebook Scam

Only the other week I reported about the Tesco, Argos and ASDA Facebook scams that were circulating.  They were offering you money in return for ‘Liking’ them on Facebook.

 

The scam detailed here has shown up again, this time using TopShop as the famous retailer how is ‘supposedly’ offering money, however do not do as they ask as you will not be getting anything in return.  Read my early post about the Tesco, Argos and ASDA scam

Tesco. Argos. ASDA Facebook Scams

Well its almost Xmas and the Facebook scams are rife.  Over the last few days we have seen ASDA, Argos and now Tesco hit by Facebook scams offering people £500 for ‘liking’ them on Facebook and following links.

This  hit ASDA recently, Argos a few days ago and now Tesco is the favourite.  The same scammers are probably responsible for all of these campaigns and are just using different retailers to refresh the scam.

Facebook users are tricked into sharing the link with their online friends, in the belief that they will win a prize. Of course, the more that the link is shared the more traffic is driven to a website of the scammers’ own choosing – and they earn commission every time they trick users into filling in an online form requesting personal information.

Tens of thousands of users have already been duped – proving just how easy it is to be conned into sharing “special offer” links.
Of course, Argos, ASDA and Tesco have nothing at all to do with the scheme – but it’s their brand names which are being besmirched.

If you were fooled into participating in this scam remove the message from your newsfeed, so you are no longer spreading it with your online chums.

BT and Nigel Mansell Twitter Accounts Hacked


BT Business and Nigel Mansell both fell victim to a Twitter account hijack on friday which then went onto punt a popular diet pill scam.

@btbusiness and @Mansell5 were both directed to a weight loss site on friday, where there was an article discussing the supposed benefits of Acai Berry.
@btbusiness soon noticed and regained control of their account, however @Mansell5 was only changed over the weekend, with Nigel tweeting on sunday evening, “I’m thinking its time to choose a new password!”
The image above shows the @btbusiness offering 🙂

The Acai Berry spam attack has been seen numerous times before, last December when Gawker was hacked a number of Twitter account were hijacked because users were using the same password on both their Gawker and Twitter accounts.

It appears no harm was done this time but both BT Business and Nigel Mansell could have faced a lot more embarrassment over this, if they had been punting something other than diet pill scams.

Sick Facebook scammers try to exploit the death of a genius

As always in the world we live in it hasn’t taken long for the scammers to try to exploit a sad world event, the passing away of Steve Jobs.

The scammers are telling people that an unnamed company are giving away 50 iPad’s in memory of the Apple genius.  Victims are asked to follow a link and complete a survey to qualify for the prize.

The offer is obviously a fake one and so far over 15000 users have followed the link, according to reports from the security company Sophos.
The scammers are aiming to make money from affiliate links, basically they make more money the more people they drive to certain websites such as gambling, contests and survey sites.  Obviously they could just as easily point you to sites hosting malicious content, but in this particular scam all pages that you redirect to are the types mentioned above.

I think we can expect a few more of this type of scam over the coming days, as always these scams seem to surface after an event like this.
Just be careful of the links you click on, never give away your personal details, logins, bank details etc and try to keep all your anti virus and other software up to date.