Feeds

Grifters punt 'get rich quick' scams at Facebook users

Social networking marks made an offer you can refuse

5 things you didn’t know about cloud backup

Grifters are using Facebook to lend credibility to an elaborate get rich quick scam designed to trick punters into handing over credit card details.

The ruse begins with an ad on Facebook touting an offer to "get paid for posting links – Google will pay you great money for doing this". Users who respond to the come-on by clicking on a link are taken to a page where someone who's supposedly become rich through the scheme relates his story.

On the same page there’s a link to something called a "Google advertising" kit. Surfers who decide to find more about this are taken to a page called emillionaire.inc

This, in turn, leads to another page where punters are invited to enter their details to see if they’re eligible for this type of job. Only prospective marks from the UK, US, Canada and Australia are eligible. Prospective marks are invited to pay $1.90, using a debit or credit card, to take part.

Users receive nothing in return promoting complaints on Facebook from punters who have been taken in by the ruse, net security firm Trend Micro reports.

"There’s a forum where someone called 'Sophie from Belfast' is seeking advice as she fell for the scam and is now afraid her details are out there somewhere. Someone else from the US has also posted complaints that money had been taken from her," according to Rik Ferguson, senior security advisor at Trend Micro.

"Facebook Inc is obviously realising revenue from the advertisements they serve on behalf of these scammers, which calls into doubt the efficacy of Facebook's advertiser vetting procedure," Ferguson told El Reg.

An example of a dubious money making ad circulating on Facebook can be found here.

In other Facebook-related security threat news, a picture ruse that first appeared in November has been given a new lease of life, Trend reports.

Targeted Facebook users are informed that they have been "tagged" in an album by a currently online friend. Users are invited to visit a site called Stealpics.com but this is just a ruse designed to get users onto a site punting an electronic credit card at hugely disadvantageous terms.

Previous versions of the album tagging bait sent users on a merry dance while harvesting email addresses but nothing to do with duping them into signing up for services of dubious worth, as with the latest variant of the approach. ®

Secure remote control for conventional and virtual desktops

More from The Register

next story
Ice cream headache as black hat hacks sack Dairy Queen
I scream, you scream, we all scream 'DATA BREACH'!
Goog says patch⁵⁰ your Chrome
64-bit browser loads cat vids FIFTEEN PERCENT faster!
JLaw, Kate Upton exposed in celeb nude pics hack
100 women victimised as Apple iCloud accounts reportedly popped
NIST to sysadmins: clean up your SSH mess
Too many keys, too badly managed
Scratched PC-dispatch patch patched, hatched in batch rematch
Windows security update fixed after triggering blue screens (and screams) of death
Researchers camouflage haxxor traps with fake application traffic
Honeypots sweetened to resemble actual workloads, complete with 'secure' logins
Attack flogged through shiny-clicky social media buttons
66,000 users popped by malicious Flash fudging add-on
New Snowden leak: How NSA shared 850-billion-plus metadata records
'Federated search' spaffed info all over Five Eyes chums
Three quarters of South Korea popped in online gaming raids
Records used to plunder game items, sold off to low lifes
Oz fed police in PDF redaction SNAFU
Give us your metadata, we'll publish your data
prev story

Whitepapers

Endpoint data privacy in the cloud is easier than you think
Innovations in encryption and storage resolve issues of data privacy and key requirements for companies to look for in a solution.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Advanced data protection for your virtualized environments
Find a natural fit for optimizing protection for the often resource-constrained data protection process found in virtual environments.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Next gen security for virtualised datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.