Facebook phishing attacks seem to be a dime a dozen these days. The latest is oddly simple but people are still falling victim to it. The subject line will be “Hello” and the body of the Facebook email will simply be a the domain 151.im. This one is a bit odd because although it is not automatically hyperlinked in Facebook, some email clients, like Gmail, will auto-link it. Don’t click on that link and don’t copy and paste it into your browser.
Twitter search reveals that it’s just getting started, but sure enough, I just got an email from a friend telling me to go to 151.im. Apparently another one for 121.im is also just getting started. Don’t visit any of these number.im combinations.
We’ve alerted Facebook to the problem. Hopefully they’re block it soon.
Update: Here’s the statement from Facebook:
We’re well aware of this and are already blocking links to these new phishing sites from being shared on Facebook. We’re also cleaning up phony messages and Wall posts and resetting the passwords of affected users. We think this is related to the fbaction.net/fbstarter.com campaign of a couple weeks ago. You can read more about how we respond to phishing in our recent blog post here: http://blog.facebook.com/blog.php?post=81474932130.
Interesting, so they think it’s related to the previous attack…