A new scam using fake job vacancies has affected more than 300,000 Facebook users since May. Identified by DFNDR Lab, PSafe's digital security lab, the attack aims to steal data and break into profiles of victims who click on the malicious link.
According to experts, the tactic involves boosting posts and paying for prominent comments on celebrity live streams on the social network, with the goal of attracting as many clicks as possible. The method has been working: according to the survey, fraud generates 220 new records per hour. For the experts, they are numbers of theft of given credentials.
Whatsapp that changes color? See five legends about the official messenger
New scam has killed more than 300,000 Facebook victims Photo: Melissa Cruz / dnetc
Want to buy a cell phone, TV and other discounted products? Meet the Compare dnetc
Links posted by criminals on Facebook lead the user to a fake login page where they need to enter their social network email address and password. The site then requests that an alleged security code be used to authenticate access. Unknowingly, the victim is allowing the hacker to hack into his account on another device.
The last stage of the attack involves obtaining more personal data such as full name, date of birth and mobile number. To this end, the user is encouraged to fill out a form to supposedly earn a free year of using Spotify and Netflix streaming services.
The method resembles cybercrimes commonly found on WhatsApp, which often involve dates like Easter and even movie release to fool the less attentive reader and instigate the click. This time, the pretext is the high number of unemployed in the country according to the latest survey of the Brazilian Institute of Geography and Statistics (IBGE), unemployment today reaches 13.2 million people.
The recommendation to protect yourself from this type of scam is to first suspect links posted by strangers on social networks. When in doubt about the suitability, it is possible to check if the link is true or not using online tools. One is present on the DFNDR Lab website (https://www.psafe/dfndr-lab/en/): Just paste the URL to check for related scams on the company's base. Similar procedures can be performed with VirusTotal.
Facebook: Tips to prevent onlookers from looking at your information
Want to know who blocked you on social networks? Find out on dnetc Forum