List of Facebook Phishing Scam Sites
Well, it really seems like a new site trying to steal people's Facebook credentials shows up every day. The .at and .be domains were attacked last week and this week the target seems to be the .ru domain. Yesterday I got a message to visit vingers.ru, and today the attack is coming in the form of nanoraw.ru. The Facebook message is similar: "Hello" for the subject and "nanoraw(insert dot)ru".
Here's the list of sites that have been spotted as part of this scam so far:
- afoi.ru
- areps.at
- bests.at
- bestspace.be
- brunga.at
- goldbase.be
- greenbuddy.be
- indigoline.be
- kirgo.at
- mymarket.be
- nanoraw.ru
- nutpic.at
- picoband.be
- ponbon.im
- redbuddy.be
- redfriend.be
- silvertag.be
- simplemart.be
- sweeter.be
- vingers.ru
- whiteflash.be
- whitemart.be
- yospace.be
Instead of making a new post every time a new scam site shows up, I'll instead update this list as soon as I find a new one. So you can bookmark this post to keep safe.
I've also noticed that the sites only work the first time you access them, and return a 404 Not Found error in subsequent requests. I'm guessing this is some kind of attempt to hide from the victims.
yeah, i keep getting these but i dont ever log in?, what happens if you do login?
If you do login they get your Facebook username and password and use it to log-in and send similar messages to your friends.
After that a lot of things can happen. They could try to pull something like this:
http://www.consumerwarningnetwork.com/2009/02/05/facebook-id-theft-new-phishing-scam/
They can also use those same credentials to log-in to your email account, because a lot of people use the same credentials in both places. And maybe also online banking services and the like.
It's the modern identity theft.
This nanoraw(insert dot)ru isn't recognized yet. Seems that the scammers pulled a fresh one. Anyway, your site is the only one that mentions this website, good job!