{"id":8072,"date":"2015-04-02T10:05:16","date_gmt":"2015-04-02T14:05:16","guid":{"rendered":"https:\/\/www.kaspersky.com\/blog\/?p=8072"},"modified":"2020-02-26T11:01:02","modified_gmt":"2020-02-26T16:01:02","slug":"avoid-phishing-facebook","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com\/blog\/avoid-phishing-facebook\/8072\/","title":{"rendered":"7 Steps to Avoid Phishing Attacks on Your Facebook"},"content":{"rendered":"<p><a href=\"https:\/\/www.kaspersky.com\/blog\/how-to-avoid-phishing\/\" target=\"_blank\" rel=\"noopener nofollow\">Phishing is a type of attack on personal data<\/a> that comes in the form of a fake email or website, which is made to look like it comes from a reputable site \u2013 but does not.<\/p>\n<p>A user might, for instance, get an email that has all of the themes and imagery of a typical message from Facebook, except this email will tell the user they need to reset their password and will offer that user a login prompt to do so. The user clicks on the prompt, is directed to a fake webpage that looks like Facebook, and then the user enters their login and password. Just like that, the phishing attack has succeeded.<\/p>\n<p><a href=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/92\/2015\/03\/06041121\/facebook-phishing-example-en.png\"><img decoding=\"async\" class=\"aligncenter size-full wp-image-8080\" src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/92\/2015\/03\/06041121\/facebook-phishing-example-en.png\" alt=\"Facebook Phishing Email Example\" width=\"671\" height=\"490\"><\/a><\/p>\n<p>Phishing works because it plays on people\u2019s trust. <a href=\"https:\/\/www.kaspersky.com\/blog\/1-in-5-phishing-attacks-targets-facebook\/\" target=\"_blank\" rel=\"noopener nofollow\">Facebook is a good example of this<\/a>. In recent years, the ubiquitous social media platform has become a very popular tool for phishers, who have exploited both Facebook\u2019s popularity and people\u2019s fears of losing their personal data \u2013 \u00a0ironically enough \u2013 to steal people\u2019s data by sending them bogus password reset requests that purport to come from Facebook, but do not.<\/p>\n<div class=\"pullquote\">Never complete a request for personal information that comes in an email<\/div>\n<p>Of course, phishing attacks in the form of Facebook emails are not the only form of phishing \u2013 attackers send similar messages that imitate the format of messages from major banks and credit card companies as an\u00a0attempt to get access to people\u2019s financial data and online accounts. Whatever web service is in question, the goal of phishing attacks is always the same \u2013 to exploit users\u2019 trust in well-known institutions to get their usernames, emails, passwords, or PINs.<\/p>\n<blockquote class=\"twitter-pullquote\"><p>7 steps to avoid #phishing attacks on your #Facebook account #cybersecurity<\/p><a href=\"https:\/\/twitter.com\/share?url=https%3A%2F%2Fkas.pr%2FSpE2&amp;text=7+steps+to+avoid+%23phishing+attacks+on+your+%23Facebook+account+%23cybersecurity\" class=\"btn btn-twhite\" data-lang=\"en\" data-count=\"0\" target=\"_blank\" rel=\"noopener nofollow\">Tweet<\/a><\/blockquote>\n<p>There are several ways to <a href=\"https:\/\/www.kaspersky.com\/au\/phishing\" target=\"_blank\" rel=\"noopener nofollow\">avoid phishing attacks<\/a>. The common theme in each is to be highly suspicious of any online request for your personal information.<\/p>\n<ol>\n<li>Never complete a request for personal information that comes in an email.<\/li>\n<li>Only enter personal information on a secure website. You will know a website is secure if the URL begins with \u2018<strong>https:\/\/<\/strong>\u2018 and if a lock icon appears in the lower right corner of your Internet browser. Click on that lock icon to view the site\u2019s security certificate.<\/li>\n<li>Look for telltale signs of forgery in emails that request personal information \u2013 spelling errors are immediate red flags. If the prompt to a webpage to enter your data has an URL that is different than the site you expected to be going to, that is a sure sign of a phishing attack.<\/li>\n<li>Don\u2019t click on links asking for personal information. Instead, go directly to the site in question by typing the URL into your browser manually.<\/li>\n<li>Make sure your computer\u2019s <a href=\"https:\/\/www.kaspersky.com\/advert\/free-trials\/multi-device-security?redef=1&amp;THRU&amp;reseller=blog_en-global\" target=\"_blank\" rel=\"noopener nofollow\">antivirus suite has phishing protection<\/a>.<\/li>\n<li>Make sure your web browser, antivirus, and all software programs on your computer are always updated to the latest versions that have the latest security patches.<\/li>\n<li>Report any suspicious messages to your bank or social media platform immediately.<\/li>\n<\/ol>\n","protected":false},"excerpt":{"rendered":"<p>There are several ways to avoid phishing attacks on your Facebook account. The common theme in each is to be highly suspicious of any online request for your personal information<\/p>\n","protected":false},"author":41,"featured_media":8079,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[5,9],"tags":[77,20,836,76,726,97,240,131],"class_list":{"0":"post-8072","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-news","8":"category-tips","9":"tag-cybercrime","10":"tag-facebook","11":"tag-online-finances","12":"tag-phishing","13":"tag-scam","14":"tag-security-2","15":"tag-spam","16":"tag-tips"},"hreflang":[{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/avoid-phishing-facebook\/8072\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/avoid-phishing-facebook\/5605\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/avoid-phishing-facebook\/7344\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/avoid-phishing-facebook\/7260\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/avoid-phishing-facebook\/7344\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/avoid-phishing-facebook\/8072\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/avoid-phishing-facebook\/8072\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com\/blog\/tag\/tips\/","name":"tips"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/8072","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/comments?post=8072"}],"version-history":[{"count":3,"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/8072\/revisions"}],"predecessor-version":[{"id":33494,"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/8072\/revisions\/33494"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/media\/8079"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/media?parent=8072"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/categories?post=8072"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com\/blog\/wp-json\/wp\/v2\/tags?post=8072"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}