Thursday, March 15, 2012

"2012 Apple iPhone 5 Giveaway" Facebook Scam

I just wrote an article for Sophos' Naked Security blog in which I provide details and screenshots of a new Facebook scam claiming to give away free iPhones—from the future.

In short, the scam involves receiving a Facebook event notice about an iPhone 5 giveaway, and ultimately it ends up being a survey scam. If you fall for the scam and click on the link on the event page, you'll be presented with a JavaScript alert similar to this one:



Following is a list of domains involved with the scam (note that the links lead to the Web of Trust report for each domain):

https://www.mywot.com/en/scorecard/checkandkeepiphone5.com (flagged as malicious by AVG and Opera)
https://www.mywot.com/en/scorecard/checkandkeepiphone5.info (redirection page)
https://www.mywot.com/en/scorecard/kedeswah.info (redirection page)
https://www.mywot.com/en/scorecard/try.valuedopinioncenter.com ("red" rating on Web of Trust, and apparently blacklisted previously by a WOT-trusted source)
https://www.mywot.com/en/scorecard/valuedopinioncenter.com ("red" rating on Web of Trust)
https://www.mywot.com/en/scorecard/support.investyourmedia.com (alleged "Reward Status" page, which prompts for an e-mail address and password)
https://www.mywot.com/en/scorecard/investyourmedia.com


For more from the JoshMeister on Security, please subscribe via e-mail or RSS, or follow me on Twitter or .