I was going through my morning emails today and received an email which appeared to be a typical Facebook message…
From: Facebook Subject: Amanda Trevino commented on your photo Date: November 24, 2010 9:55:08 AM PST To: Kelly Lynn
With the message content as:
Amanda Trevino commented on your photo. To see the comment thread, follow the link below: http://www.facebook.com/n/?photo.php&fbid=155175754523620&set=a... Thanks, The Facebook Team
I believe this is exactly how real, legitimate Facebook photo comment emails look like. In addition, even though I do not know an Amanda Trevino (although it’s a common sounding name), it is entirely possible for people to comment on your photos even if they’re not on your friends list.
Another factor that likely came into play is related to the type of email it was. Curiosity likely got the better of me and I clicked the link right away as I was wondering what the comment was. I should have followed my own advice as outlined in this article “4 Big Tips to Save You From an Email Phishing Scam“… but like I said, I was so curious on what the comment was I must have jumped the gun.
Anyways, luckily I noticed a quick redirect in my browser… I saw it go to:
… which wouldn’t have happened if it was a legitimate email. I’m not sure if privacyadservices.com is owned by the phishing scammer (perhaps it is just someone’s website that was hacked and used for this purpose unknowingly to the owner).
The website is now offline as it must have been shutdown by their ISP.
So to summarize, if an author of phishing tips article can almost be tricked… so can you! Keep your eyes pealed at all times 🙂