In light of current events, scammers are targeting Facebook users with a new scheme that takes advantage of the buzz surrounding Prince Harry and Duchess Meghan Markle’s new baby. This scam is a “bait-and-switch” style ploy that relies on a fake website to scan the user’s computer for private information like bank accounts and credit card numbers.
Experts Comments:
Paul Bischoff, Privacy Advocate at Comparitech.com:
“Fake video player updates are among the most common types of malicious ads that prey on web users. This scheme in particular leverages people’s inherit trust in their Facebook friends to get them to click through and install a bogus update. That update in turn posts the scam link to the victim’s timeline, spreading it to more people.
Even if you trust your Facebook friends, you should always treat unsolicited links with scepticism, because you never know when someone’s account has been hacked. Remember that most modern web browsers and websites no longer require third-party updates to video players, which have mostly switched from Flash to HTML5. If you see such a scam on Facebook, you should immediately flag it so that moderators can remove it from the site.”
Brian Higgins, Security Specialist at Comparitech.com:
“Anyone falling for such an obvious scam is exhibiting an alarming level of gullibility. The Royal Household have been abundantly clear that no media regarding the birth will be released until the Sussexes are ready. Unless you’re ‘Facebook Friends’ with Meghan Markle‘s mum, there is absolutely zero chance of this working out well for you. The click-first-and-worry-later culture is free money for online fraudsters and a degree of cynicism is well worth your time when you’re online.”
The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.