Facebook Resurrects the 419 Scam

Facebook has allowed advanced fee fraudsters to deliver more personalized and targeted scam letters to their intended victims.  These so-called “419″ scams (named after the section of the Nigerian penal code for Obtaining Property by false pretences) gained popularity through the use of letters and then email.  More about the scam on Wikipedia.  It seems absurd that anyone would fall for early versions of the scam – as letters were often poorly written and obviously fraudulent.  Over the years, scammers became more creative and diligent in enhancing their work product and the letters became much more legitimate-looking, although the content of the letters often belied the scam to anyone who took the time to think about it.  

But now with Facebook, thieves have found a whole new way to target victims, using the technology against itself.  Social networks that allow users to added trusted friends as connections have an inherent vulnerability.  If someone hijacks an account, they can effectively insert themselves into communications with a very high level of trust and authority – at least for a short time until the ruse is uncovered.  MSNBC recently posted an example here.  Facebook users beware, and report your account if it becomes compromised.

PIN heads

A recent article in the Hartford Courant indicated that two dozen bank customers lost money after falling victim to a phishing attack where scammers sent email and text messages asking them for pin numbers associated with their debit cards.  The article suggests that the timing of the scam coincides with an announcement from a financial processing company that it’s data had been compromised.  It seems as if we’re not making much headway on the education of consumers about not responding to such obvious scams.