These attacks often use a stolen Facebook account to send malicious links to the account holder's friends list and direct them to the same web address as the Facebook login page. . Users will then be tricked into providing their access information, then attackers will use these new victims' Facebook accounts to send similar phishing emails to their friends list. to collect more account information in Facebook.
Symantec recommends that users be more concerned with the best security methods by staying alert for any messages sent from a website or seemingly sent from that site; and should protect yourself by constantly updating new security threat identifiers.
Password is weak
Minimize the risk of being attacked on Facebook Picture 1 According to Symantec, individual users who use a single password to access various accounts, including purchases and online banking transactions, are the ones most at risk. . Cybercriminals will quickly access all their online accounts and earn money from revealing this password.
The most important thing is that individual users should always maintain a high alert for any message / message from a website or appear to be sent from that site. Instead of clicking on the link in the message / message, type the address directly into the address bar on the browser. You should try checking again to make sure you are in the correct address.
When clicking on a link to a web page, make a habit of looking up the browser's address bar to see exactly what appears on it. It is not always possible to identify a phishing site but in this particular case, the phishing site will probably not have the address www.facebook.com.
Precautions
It can be said that password is still a key issue that users need to pay attention to. Users should use complex and unique passwords for each site. And here are a few suggestions for you on this issue:
- Combine using uppercase and lowercase characters, symbols and digits as well.
- Make sure your password is at least 8 characters long. The more characters the password is, the less likely an attacker can deduce that password.
- It is recommended to leave your password at random and without any specific meaning.
- Each account has a different password.
- Change your password regularly. Set up a process, change the password the first day each month or on each payment day.
- Do not save your password in the books or let anyone know
- Do not use the name or numbers associated with you as a password, such as your birthday or nickname.
- Do not use your own username as a password in any way.
- Do not use names derived from your name, the name of a family member or the name of a pet in the house.
- Avoid using only one word as a password (in any language).
- Do not use passwords as meaningful words.
- Avoid using easily identifiable personal information. This information includes: driver's license number, telephone number, social insurance number, license plate or vehicle, home address, .
- When asked whether to save the password in the computer, do not say 'Yes'. Instead, remember the password or use a reliable password management software to do this.
Get in the habit of being alert to the requirements of entering your account name and password. Constantly update your browser and operating system. Use updated security software. Internet users can access Norton Safe Web to notify malicious websites or high-risk phishing.