Lately, I’ve been receiving lots of “friendship” requests from unknown folks, supposedly from Facebook. The way the emails are constructed are similar to the real Facebook friendship requests.
But on closer inspection, the links in the email to ‘accept’ or ‘decline’ the friendship request go to a different (hacked?) site.
One of the phish emails had this subject line:
“You requested a new Facebook password”
and this message:
You recently asked to reset your Facebook password.
Click here to change your password.
Didn’t request this change?
If you didn’t request a new password, let us know immediately.
The email was in html, the hyper link in the “click here” was linked to a hacked page.
The phrase ‘let us know immediately’ was also hyper linked to another hacked page.