Fake "Facebook Security Team" account asks for your credentials
Posted on 07 January 2013.
An account posing as that of the Facebook Security Team has been spotted sending warnings to page administrators, trying to fool them into believing that their Facebook account will be suspended due to a violation of the social network's Terms of Service:

The message offers a link for verifying the account, and it takes users to a third party Facebook application that requests them to enter their Facebook page name, email or phone and password.

If entered and submitted, that information is automatically sent to the scammers behind this phishing scheme and used to hijack the account.

If you have fallen for the trick, try to access your account. If you are able to do so, change your password immediately. If you have already been locked out, report the compromise and Facebook will help you regain control of the account.

"Anytime you see a Facebook page in the following format: apps.Facebook.com/app_name_here/, you should know that you are NOT dealing with an application created by Facebook," Facecrooks advises. "Scammers use official sounding page names, applications and links to make their schemes appear legitimate to unsuspecting and ill-informed users."


Pen-testing drone searches for unsecured devices

You're sitting in an office, and you send a print job to the main office printer. You see or hear a drone flying outside your window. Next thing you know, the printer buzzes to life and, after spitting out your print job, it continues to work and presents you with more filled pages than you expected.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Fri, Oct 9th