« Bank of America Phishing | Main | Licensing Email Users [Updated] »

November 18, 2010

Today has seen a flood of malware being attached to spam claiming to come from "Facebook Support." The message Subject: lines vary a bit, but the ones I've seen all reference something to do with ones account being suspended or password being reset. The recipient is urged to open the attached .zip file to obtain new login credentials.

Here is a message body example:

Good afternoon!

A spam is sent from your Facebook account.
Your password has been changed for safety.

Information regarding your account and a new password is attached to the letter.
Read this information thoroughly and change the password to complicated one.

Thank you for your attention,
Facebook Service.

The attached files have random numbers at the end of their names, but all begin with Facebook_document_Nr.

Facebook has been a huge target lately for all kinds of nefarious activity. Add to that the system's privacy and security settings that change more often than you change your socks, and it's hard to know what's what over there. One thing is certain: If you receive any email concerning your Facebook account or password — regardless of who is shown in the From: field — it's more than likely to be a fake. If you're uneasy about any potential account problem, simply log into your account through normal means (through the bookmark you have previously recorded). If there's a genuine problem with your account, you'll learn right there. In 99.999999% of the cases, everything will be fine because the email you received was fake, fake, fake.