Protecting over 200 million PCs, Macs, & Mobiles – more than any other antivirus


October 13th, 2011

Profiling facebook spammers

I’ve seen this happen many times, but this time I decided to get a screenshot of it. In a small box, facebook recommends that I add a friend because we have friends in common… or I get a direct friend request from someone I don’t know. I click the profile to investigate and, indeed, we have several friends in common. But an instinct triggers that something isn’t quite right.

Example 1 – Notice:

  1. New profile
  2. No personal information other than “Single”
  3. Only 17 friends
  4. All 17 friends are male
  5. Only 1 photo, with a focal point of breasts and eyes (maybe I should have titled this post “Why men are easy targets for spammers”)

 

 

 

 

Example 2 – Notice:

  1. New profile
  2. No personal information
  3. Only 5 friends
  4. No friends in common

 

 

 

 

Occasionally, I will go ahead and accept a direct request even though I suspect it to be a fake spammer account. Once I have ‘friend’ access to see all wall posts, etc., and can confirm my suspicions, I then quickly delete the person. Partly I do this to be aware of what techniques people are using for their less-than-productive endeavors, and partly I do it because… I’m curious. ;)

My point is this: If ‘common sense‘ were actually common, these spammers would have nobody to prey upon. That said, if something seems suspicious/odd/out of the ordinary on the WWW (in other words, if before the WWW you didn’t have a lot of beautiful strangers calling you, wanting to be friends), then please… think before you click. At worst, you’ll lose a minute or two of time to be sure — at best, you could prevent crashing a PC and spreading trouble to all your friends.

 

 

  • GreyFalcon

    My girlfriend got a friend request that had a profile like this. The sad part was the name was so close to another friend of mine that she though it was her and added her. Within minutes, the person who had the account took control of her face book, then her email accounts, then got into her computer. Unknowingly, while the person was in her computer got into mine past the firewalls through yahoo messenger. Once into mine, got into my emails before I detected the intrusion and was able to (over a weeks period) shut him/her down. The IP trace from an email sent from this person through my GF’s account traced back to Turkey.

    Point is for everyone, be VERY careful of who you add as a friend. They may intend more harm than simply spamming. It was actually my Avast! Pro trial that detected a ‘secure’ email connection when I had no email programs or even messenger programs running that tipped me off. Hats off to Avast! for stopping an intrusion that bypassed the firewall.

  • http://www.linkedin.com/in/mashak Jason Mashak

    @GreyFalcon
    Thanks for the story! It’s amazing how many methods these people will use – a lot like telemarketers on straight commission. ;)

  • http://www.hacktohell.org hacktohell

    With facebook lists it damn easier add them to restricted and then find out about them

  • chechu

    i saw couple days ago that if u search for kaspersky in facebook…u will get the TDL4 rootkit..but avast network shield blocks those URLS so no worry!