1 phish, 2 phish, 3 phish….

December 4, 2023

🚨 Beware of Phishing Attempts: A Quick Reminder 🚨

Phishing relies on emotions, not logic. Recently, an acquaintance got a fishy message threatening account deletion. Classic move to trigger panic and get you clicking. But here’s the scoop:

  • Step one: Don’t click the link
  • Step two: Seriously, don’t click the link!

While at first blush this may appear to be almost-kinda-sorta-legit, upon further review it screams phishing attempt. 

🕵️‍♂️ Here are a couple things to be on the lookout for:

  • Urgent threats (account deletion, anyone?)
  • Dodgy grammar and spelling
  • Sketchy websites that scream “NOT legit”

Many phishing attempts prey on the ability to manipulate people into an emotional response rather than a logical one. 

Fakebook

In this case, through an urgent call to action with a threat of loss (account deletion) the threat actor is trying to get the target to simply click the link. It could be a low-effort attempt to install malware, but it is more likely they are trying to harvest login credentials for use later on. 

In the cyber and info-sec worlds, there are several forms of this and this case is no different. As you can see from the screen shot here, the scammer has set up a low-effort “Meta-ish” looking front page to get people to click it and fill out a form. 

đźš© The Red Flags on this one?

  • Poor grammar (common theme, huh?)
  • A very-not-Meta website address
  • And a typo in the URL address: /supporpage668

Bottom line: No matter how urgent, don’t be fooled. Don’t click that link!