there is a phishing scam going on in the facebook by one of its advertisers that entice facebook users to guess the friend's birthday and stand to win Macbook Air.
it's absolutely a scam. it not only use the camouflage marketing tactics by hookwinding users in subscribing their services, it's also a phishing scam that steals the users password!
the moment you click on the web banner on the facebook it will lead you to their "contest" website which immediately steals your facebook account's password, either after or before you keying more info in the website.
immediately you're log out of the facebook and you have to re-login. but you cannot login again with your existing password!
because you're require to reset to your NEW password!
i received a warning email from the facebook immediately:
"Hey Edo,
We have detected suspicious activity on your Facebook account and have reset your password as a security precaution. It is possible that malicious software was downloaded to your computer or that your password was stolen by a phishing website designed to look like Facebook. Please carefully follow the steps provided:
1. Run Anti-Virus Software: If your computer has been infected with a virus or with malware, you will need to run anti-virus software to remove these harmful programs and keep your information secure. For Microsoft:
http://www.microsoft.com/protect/viruses/xp/av.mspx
http://www.microsoft.com/protect/computer/viruses/default.mspx
For Apple:
http://support.apple.com/kb/HT1222
2. Reset Password: Be sure that you use a complex string of numbers, letters, and punctuation marks that is at least six characters in length.
To reset your password, follow the link below:
http://login.facebook.com/reset.php?email=xenoed
(If clicking on the link doesn't work, try copying and pasting it into your browser.)
3. Never Click Suspicious Links: It is possible that your friends could unwillingly send spam, viruses, or malware through Facebook if their accounts are infected. Do not click this material and do not run any .exe files on your computer without knowing what they are. Also, be sure to use the most current version of your browser as they contain important security warnings and protection features.
4. Log in at Facebook.com: Make sure that when you access the site, you always log in from a legitimate Facebook page with the facebook.com domain. If something looks or feels suspicious, go directly to www.facebook.com to log in.
5. Report Suspicious Activity: Please visit the following pages for further information about Facebook security and information on reporting material: http://www.facebook.com/help.php?page=420 and http://www.facebook.com/security.
Once you have performed all these steps, your account should once again be secure. Please be sure to visit the Facebook Help Center for further information regarding these security issues and let us know if you need assistance.
Thanks,
Facebook Security Team"
when you're in their page, it requires you to key in your mobile number then in return it will send you a text message require you to confirm your participation.
BUT... it's not a confirmation of participation, in fact it's a subscription. a "continuation subscriptions" to their mobile content service, it will not stop until you text them again to request stop. each text message will cost you MYR4 to reply, and it's not stated in the text message but in the fine print under the website. the t&c states that if you reply means you've agreed to the terms & conditions. it means you by the time you realize, you would have at least paid MYR8 (USD2.36) just to cancel the "subscription"!!
luckily i was smart enough (but not smart enough to let them steal my password), with my marketing & advertising experience i know how mobile marketing works. they make money thru every text message you sent.
i realized it's a scam when they sent me a message requesting me to send back a confirmation. by law (or ethically) it must state that the cost of each SMS but it didn't. and normally, you will need to send a few text messages in order to confirm a deal, e.g.
you: YES (send 12345)
they: pls. provide info such name, ID, etc...
you: richard, 987654 etc (send 12345)
they: pls. answer few questions
you: the answers (send 12345)
imagine, you would have sent at least 3 times to realize it's a scam! that will be MYR12 (USD3.54) with this scam...and could be more!
I just have no respect with dishonest marketing, totally unscrupulous!
the scam is operated by the following companies:
www.wixawin.com & Sybase 365 Asia Sdn Bhd in Malaysia.
if you have info of the company operating in your country please inform too.
i'm sure we can save some people ;)
No comments:
Post a Comment