Home Facebook Related Facebook ‘Fan Page Verification Program’ Phishing Scam

Facebook ‘Fan Page Verification Program’ Phishing Scam

by Brett M. Christensen

Outline

Message purporting to be from Facebook Security claims that a new security feature called the “Fan Page Verification Program” is being implemented and that Page owners must click a link and choose a ten digit security code to complete the process. Recipients are warned that their Page will be suspended permanently if the process is not completed by May 30, 2013.

Brief Analysis

The message is not from Facebook. It is a phishing scam designed to trick users into divulging their Facebook login details to Internet criminals.

Example

Dear Facebook User,

You are receiving this message to notify you about the new security feature from Facebook called “Fan Page Verification Program”.

After many Fan Pages have been stolen lately leaving us no choice but Deleting them forever, we had to come up with an original solution about the Fan Page’s Security.

Luckily, your Fan Page, has a lot of likes and provides High Quality Content, which qualify it for this program.

To complete this process you must choose a 10-digit number (it can be any number) and that number will be assigned as your Security code”. This code will be the new passphrase for changing anything important for your Fan Page, like the Admin roles or other important settings.

Please be aware that this process it’s open only until 30.05.2013 and it’s mandatory to complete it. If you don’t, your Fan Page will be suspended permanently since it is not considered safe for the wide audience.

Please visit the link below to complete the process:
[Link Removed]

Facebook Security

 

Detailed Analysis

According to this message, which purports to be from Facebook Security, Facebook is implementing a new security feature to protect Page owners called the “Fan Page Verification Program. The message claims that, to complete the process and make sure that their Page is protected by the new system, Page owners must follow a link and choose a ten digit passphrase. But, warns the message, Page owners who fail to complete the process by 30th May 2013, will have their Pages permanently suspended.

However, the message is not from Facebook Security and the supposed “Fan Page Verification Program” is nothing more than a criminal ruse designed to steal Facebook account details. Page owners who fall for the scam and click the link will be taken to a bogus “Fan Page Verification Program” web page and asked to submit Facebook login details as well as the supposed ten digit “Transferring Code”:

Facebook Fan Verification Scam Page 1

After completing the form and clicking the “Submit” button, the following confirmation message will be displayed:

Facebook Fan Verification Scam Page 2

Thus, victims will believe that they have successfully completed the procedure and will happily wait for the “confirmation” email blissfully unaware – at least for a little while – that they have just handed their Facebook Account login details to cybercriminals. Meanwhile, the criminals can use the stolen information to hijack Facebook accounts and Pages and launch further spam and scams campaigns in the names of their victims.

This phishing scam is a little more sophisticated than others of its ilk but is nevertheless similar in intent to a long running series of “Facebook Security” scams that have plagued Facebook users for several years. If you receive one of these messages, do not open any links or attachment that the message may contain.

Since you’ve read this far…

…can I ask you for a big favour?

To enhance your privacy and security and offer you a better user experience, Hoax-Slayer is now ad-free. To keep the site online, I now rely on voluntary contributions from site visitors along with commissions from a few trusted products and services that I promote via reviews on the site.

If you found the above report useful, please consider supporting Hoax-Slayer by making a donation. Any amount you can give will be greatly appreciated.

You can donate using your credit card via the form below. Donations are collected securely via the online payment service Stripe. Stripe uses state of the art security to keep your data safe.

Thank-you.
Brett Christensen