Researchers spotted a new Facebook scam that could deceiveÂ also tech-savvy people and trick them into giving the attacker access to their Facebook accounts.
Don’t trustÂ messageÂ apparently sent from any of your Facebook Friends asking for urgent help to recover their Facebook account.
Researchers have spotted a new Facebook scam that could deceiveÂ also tech-savvy people and trick them into giving the attacker access to their Facebook accounts.
The Facebook scam abuse “Trusted Contacts, ” a Facebook account recovery feature that sends access codes to a selected list of trustedÂ user’s friends in order to help you regain access to their Facebook account in case you forget your password or lost access to your account.
TheÂ alert was launchedÂ by AccessNow, the attack chain starts with a message from the compromised account of one of the friends of the potential victim.
“The new attack targets people using Facebook, and itÂ relies on your lack of knowledge about the platformâ€™s â€œTrusted Contactsâ€� feature. states the public security alert.
“Trusted Contacts is a system created by Facebook to help you gain access to your account if you forget your password or your account is locked. If you enable Trusted Contacts, Facebook will ask you to identify three to five people. If you need access to your account, Facebook will send part of a code to each of these users that can be combined to gain access to your account.”
The attackerÂ asks for victim’s help recovering his account, he tells the victim that he is as one of his Trusted Contacts on Facebook, and inform him that he will receive by mail a code for recovering their account.
The attacker, who is posing as a victims’ friend thanks to the compromised account, asks the victim to share the recovery code.
Then the attacker triggers the â€œI forgot my passwordâ€� feature for the victim’sÂ Facebook accountÂ and requests a recovery code.
At this point, the code received by the victim is not the key to unlock his friend’s account, but instead, the code requested by theÂ attacker through theÂ “Forgot my password” procedure.
If the victim shares the code with the attacker he will be able to take over theÂ your account from you.
Below the step by step procedure:
- You get a message from an attackerÂ on Facebook Messenger, who is using the compromised account of someone on your Friends list.
- The attacker asks for your help recovering their account, explaining that you are listed as one of their Trusted Contacts on Facebook, and tells you that you will receive a code for recovering their account.
- Then the attacker triggers the â€œI forgot my passwordâ€� feature forÂ yourÂ Facebook accountÂ and requests a recovery code.
- In an effort to help,Â you send the code youâ€™ve just received to your â€œfriend.â€�
- Using the code, theÂ attacker can now steal your account from you, and use it to victimize other people.
This specific Facebook scam relies on the lack of victim’s knowledge about the Trusted Contacts feature.
“The new attack targets people using Facebook, and it relies on your lack of knowledge about the platform’s Trusted Contacts feature,” states Access Now.
The Facebook scam can potentially target any users of the popular social network, but experts are seeing the majority of reports from human right defenders and activists from the Middle East and North Africa.”
The post A new Facebook scam allows your friend contacts to hack your account appeared first on Security Affairs.