I don’t use Facebook for non-friends or relatives so it’s odd when complete strangers send me friend requests.
The emails appear to be coming from Facebook’s notification service, with a subject such as “Khulood Abbas wants to be friends with you on Facebook.”
Of course, the sender is spoofed and it’s yet another phishing attempt that will lead the unsuspected to surrender their Facebook passwords.
The links that supposedly take you to Facebook’s login page point to a page on a freshly registered domain, permitds.com
On a daily basis, I receive half a dozen such emails. This is not your average annoying but innocent spam; it’s a brazen attempt to hijack your Facebook password.
The hackers then move onto other linked accounts, trying to test that password; you’d be surprised to know that more than 30% of Internet users share passwords across several accounts: personal and business email, social network accounts etc.
Never click on emails – no matter how authentic they appear to be – when prompted to visit a web site; simply visit the web site’s URL by directly typing it into your browser. Never share the same password between accounts.
Here’s some more info about security in one of my previous posts.
Thanks for the warning.