Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Be wary of phishing when logging on to Facebook and how to protect your Facebook account
This is especially important if you use Facebook on a mobile device rather than a computer. Below is a graph of the percentage of websites used on mobile from 2009 to 2017 globally.
Websites worldwide have a mobile version available
Scammers are starting to exploit techniques to attack mobile users when mobile traffic is larger than PC traffic. With the fact that many mobile devices are less secure than PCs, this is a great opportunity for them.
How does Facebook login scam work?
This type of phishing uses a technique called URL padding. A regular URL will consist of three parts:
- Domain (required)
http:/// facebook.com /photo.php?fbid=123456
- Secondary domain (optional)
http:/// m .facebook.com/ photo.php? fbid = 123456
- Path (optional)
http://m.facebook.com/ photo.php? fbid = 123456
For mobile users, you will see the address m.facebook.com on your browser when using Facebook. This is to combine the domain and sub-domains displayed on the mobile version of Facebook. When you see it, you will feel safe.
URL padding is when a fraudster creates a subdomain based on a completely different domain to impersonate a page, then inserts it into a subdomain with innocuous characters to make the user think they are on the right page. real. This is an example URL from PhishLabs:
http://m.facebook.com----------------validate----step1.rickytaylk.com/sign_in.html
Visit this page, you will see the login screen identical to the Facebook home page on mobile, asking for login information. Users who do not pay attention will only look through the URL and see m.facebook.com and assume that it is the real page.
When finished, it is considered as done. The page will report innocuous errors (such as wrong passwords .) but your username and password information is stolen. Now an attacker can use that account to extract other accounts such as Gmail, Amazon, PayPal, banks .
Whoever pays attention will see the actual domain of this page is rickytaylk.com and it has up to 3 sub domains.
- com ---------------- validate ---- step1
- m
If you use a computer, you may notice that this URL is fake, but on the phone, the URL will only display as shown below, so it is very confusing.
The URL cannot be displayed completely on mobile browsers
This added URL can be sent in many ways such as email, instant messaging, chat applications, etc. However, the fake URL is not a new method. Earlier this year there was also an exploit discovered on Chrome (and other Chromium-based browsers), in which the URL was edited. Fortunately, the bug was patched before the scammer could exploit it. But this also shows that completely trusting the URL is not recommended at all.
How to secure your Facebook account
Kareem WintersYou should read it
- Warning of donkey by accepting money on Facebook
- Facebook's Libra electronic currency has not yet set a launch date but scam tricks are ready
- How to avoid Facebook Scam
- How to detect scam online
- The winning scam from Google: 'Game cat' for vigilant people, 'tragic' for those who are light-hearted
- Trick to change the annoying interface on Facebook
- Two college students allegedly cheated nearly $ 1 million of Apple
- Beware of phishing emails impersonating Facebook
May be interested
- How to protect yourself from phishing attacks via mobile phones
mobile phones are a great gadget, and it has marked a huge change in the lives of each of us. combined with the internet, smart phones help users have access to a huge amount of data whenever you need it. - 5 note to not be blocked Facebook accountfacebook is becoming more and more strict with users, so you need to control your account well so that it is not permanently locked. below we have mentioned five things you need to keep in mind to avoid being blocked from your facebook account.
- Facebook supports unlocking accounts with facial recognitionas we all know, social networking sites like facebook, twitter, instagram, ... are where we can connect with people all over the world. however, hackers always use different techniques to hack our accounts. so how to protect your account best to avoid hacker intrusions or regain accounts in case of forgetting passwords?
- 5 tips to not be hacked Facebook accounttipsmake - the tips compiled and provided from facebook itself will help users protect their personal accounts and facebook pages for the community (facebook page).
- Identify popular online scams so as not to lose money unfairlyphishing via facebook, zalo, phone calls ... is quite common, although it has been warned but there are still many people who are 'trapped'. find out the tricks, phishing tricks of scammers through the following article to not lose money unfairly and avoid unwanted nuisance.
- How to create a Facebook accountthe number of facebook users is increasingly increasing by interesting features such as chat, contact with family, relatives, friends, sharing emotions, stressful pressures from life ... however to create a facebook account, not everyone knows, especially new users. tipsmake.com would like to guide you how to create a facebook account both on the computer and on the phone so you can be more active and increase the safety of your account.
- How to report phishing emails in Outlook.comphishing email is a seemingly legitimate email, but it was created to steal personal information, such as account numbers, usernames, pins or passwords.
- How to protect Facebook against dangerous DantriAZ virusa trick on facebook, stealing facebook accounts that have just appeared, is disguised as the dantriaz domain. as soon as the user clicks, you will be asked to enter your account and immediately, that account will be stolen.
- Be wary of disguised Microsoft OneNote Audio phishing emailsonline scammers are trying to create more sophisticated and unpredictable methods.
- [Infographic] 4 types of Phishing are easy to trap usersphishing often appears as a reliable activity by legitimate companies or a reputable electronic information site like ebay, paypal, gmail ..
![[Infographic] 4 types of Phishing are easy to trap users](https://tipsmake.com/data/thumbs_80x80/[infographic]-4-types-of-phishing-are-easy-to-trap-users_thumbs_80x80_q5IK2um5z.jpg)
Tech info
- Apple users are careful with the kind of malware that is virtually undetectable on a Mac
- Firefox 55, 56 browser can open 1,500 tabs easily
- Amazon CEO Jeff Bezos surpassed Bill Gates to become the richest man in the world, updated: has come down again
- 6 super simple ways to learn new languages in 5 minutes a day
- Instead of killing Flash, we should save it for posterity
- Drop Facebook's heart, add a heart effect on Facebook to Hali, XOXO
Apple users are careful with the kind of malware that is virtually undetectable on a Mac
Firefox 55, 56 browser can open 1,500 tabs easily
Amazon CEO Jeff Bezos surpassed Bill Gates to become the richest man in the world, updated: has come down again
6 super simple ways to learn new languages in 5 minutes a day
Instead of killing Flash, we should save it for posterity
Drop Facebook's heart, add a heart effect on Facebook to Hali, XOXO