Thirtyseven4 Security: Facebook Notification Scam
Looks can be deceiving.
If cyberbullying, exposure to inappropriate content, online predators, privacy concerns, potential misuse of personal information, and other potential dangers weren’t enough, a plethora of cybersecurity threats including phishing, malware, scams, data breaches, and social-engineering-attacks continue to constantly plague Facebook’s (mostly unsuspecting) 3 billion monthly users.
The high numbers of daily cyber-attack attempts on Facebook are almost unchartable, but in one such recent incident, Facebook users are noticing a dubious, well-placed advertisement socially engineered to mimic Facebook’s notification and messaging services icons (see below):
Analysis Report
Incident Summary:
The malicious Notification and Messenger advertisement contains a malicious URL embedded in a Facebook redirect link that leads to a fraudulent web page designed to trigger a persistent full-screen display, potentially as part of a scareware or browser lock campaign.
1. The Thirtyseven4 Security ThreatLab analyzed the shared URL and attempted to access it. Upon visiting the link, the following web page was displayed.
2. In this prompt the following website URL was mentioned:
https://aworerin[.]com/?label=777dxxxx
3. If this URL is manually launched by copy-pasting, it loads the website without any redirection.
4. However, If we click on the “Follow Link” option, sometimes it redirects to the following suspicious web page:
https[:]//gryvor4[.]chhawa[.]com/info2/xxxxxxx
5. If we click anywhere in web page then the following fake ‘Windows Security’ image below is opened in a browser full-screen that doesn’t allow the browser to be closed or allow a user to switch applications. Only if a user presses and holds the ESC key or uses Task Manager to close all browser application processes with the full-screen close.
Cyber Security Fact: Microsoft will never lock up a device and display a screen requesting users to call a (Microsoft) phone number. These are typical scammer techniques to coerce users into following (mal-intended instructions. In many instances, if a pressured-user initiates a call to the noted number, the receiver of the call often times attempts to deceive users into downloading malware or visiting dangerous sites that can infect a computer/phone/device and steal personal data. In many cases the scammer attempts to execute payment for these fraudulent services.
Stay vigilant and protected against the latest strands of cyber evils by proactively protecting your devices with a robust and multi-tiered cyber protection suite such as Thirtyseven4 Security.
Trust us to protect you.
About Thirtyseven4 EDR Security:
Thirtyseven4 EDR Security exceeds cyber security insurance requirements and includes:
• Advanced EDR Capabilities
• A.I. based Ransomware Protection
• Next-Generation Malware Engine
• Automated Curative Response
• Advanced Next-Generation Anti-virus protection
• Automated/Monitored/Dynamic Endpoint Detection & Response (EDR) functionality
• A.I. based Ransomware Protection
• Next-Generation Malware Engine
• Automated Curative Response
• Removal of Current Antivirus Product
• Integrated Patch Management
• Anti-Keylogger modules
• Asset Management
• Firewall
• PC-Tuning
• Content Filtering
• Malware Detection & Removal
• Vulnerability Scanning
• Email Security
• Advanced Device Control
If you’re interested in receiving a non-obligation quote for Thirtyseven4 EDR Security, please complete the form located at:
https://www.thirtyseven4.com/get-a-quote/
We are grateful to be serving over 2,400 schools, businesses and non-rofits across the Nation and Thirtyseven4 EDR Security cares for our customers! We want the higher level of Security and Service for you and Thirtyseven4 EDR Security is it.
Thirtyseven4, LLC is dedicated to serving customers with a full palette of security solutions including AntiVirus, AntiMalware, Anti-Ransomware and Zero-Day Threat Protection.