'Twilight' fans targeted in Facebook scam

Facebook updates are circulating that look like promotions of a game related to the next movie in the teen vampire series.

New scam tricks people into thinking they will get to play a new game related to "Twilight" teen vampire movies.
New scam tricks people into thinking they will get to play a new game related to the "Twilight" teen vampire movies. Sophos

Fans of the "Twilight" movies are falling prey to a scam that can end up hijacking their accounts and sending the scam on to unsuspecting friends.

Facebook updates are circulating that look like promotions of a game related to the upcoming teen vampire movie, "Twilight Breaking Dawn," according to this Sophos blog post.

The link leads to what looks like a Facebook page with a "play now" button that when clicked surreptitiously "likes" the link and spreads it on a visitor's Facebook account.

It doesn't stop there. A dialog box pops up asking for permission for a third-party application to access the victim's Facebook account to post messages and photos, Sophos said. And then the victim is asked to fill out a survey to "verify" their account. The scammer makes money off every survey completed. (This Sophos video shows how to clean up a computer after being scammed.)

It's unclear how widespread the scam is as a Facebook spokesman said the company does not comment on the volume of attacks or specific cases. However, he did tell CNET in an e-mail that: "We are currently tracking this scam and are working to shut down the spammy vectors + remediate any users who have been affected."

Facebook also offers these tips on its Security page:

  1. Don't click on strange links, even if they're from friends, and notify the person if you see something suspicious.

  2. Don't click on friend requests from unknown parties.

  3. Review your security settings and consider enabling log-in notifications. They're in the drop-down box under Account on the upper right-hand corner of your FB home page.

  4. If you come across a scam, report it so that it can be taken down.

  5. Don't download any applications you aren't certain about.

  6. For using Facebook from places like hotels and airports, text "otp" to 32665 for a one-time password to your account.

Victims are tricked into spreading the scam.
Victims are tricked into spreading the scam. Sophos

 

Join the discussion

Conversation powered by Livefyre

Show Comments Hide Comments
Latest Galleries from CNET
Best iPhone 6 and iPhone 6 Plus cases
Make your own 'Star Wars' snowflakes (pictures)
Bento boxes and gear for hungry geeks (pictures)
The best tech products of 2014
Does this Wi-Fi-enabled doorbell Ring true? (pictures)
Seven tips for securing your Facebook account