Top 3 Facebook Phishing Scams & Tips to Avoid Them
Author: Trend Micro
This article is from Trend Micro.
to hearing about celebrities having their social media accounts hacked into — Elon Musk, Joe Biden, Kanye West, just to name a few. However, if you think that because you’re not a celebrity, you’re not in danger of being hacked, you’re making a big mistake.
To hackers, your social media accounts are immensely valuable. They will stop at nothing trying to steal your login credentials. Once logged into your account, they can delete all your cherished photos and archived posts, send inappropriate messages to your contacts, and commit identity theft. Read on to learn about the top Facebook phishing scams and tips to stay protected!
STOP! Have You Enabled 2FA?
If you haven’t already, you should enable two-factor authentication (2FA) on your Facebook account for better security. For complete instructions on how to do so, clickhere.
Top 3 Facebook Phishing Scams
#1 — “look what i found” / “Is it you?” Messenger Scam
Posing as a Facebook friend, scammers will send you messages with the words “look what i found” or “Is it you?” accompanied by a laughing face emoji. Don’t click!
Source: 7News.com.au
What an “Is it you?” scam message looks like
The attached link will take you to a fake Facebook login page where you’re asked to submit login credentials. If you do, scammers can record the sensitive data. Don’t fall for it!
#2 — Fake Facebook Security Alert Emails
Scammers might also pose as Facebook and send you emails saying that there are security issues with your Facebook account, like suspicious login attempts or activities violating its Community Standards.
Then they prompt you to click on the embedded button to verify your account, threatening that your page will be deleted if you don’t take action.
The button leads to a fake Facebook login page that asks you to enter your login information. Below is an example. Notice that the web address is NOT a legitimate Facebook page.
Sample Facebook phishing page
Don’t submit anything. As mentioned, scammers will use your data to commit identity theft and other cybercrimes. Be careful!
#3— Facebook Chatbot Phishing Scams
Malicious chatbots are sending would-be victims phishing messages with the announcement that “Your page has been scheduled for permanent deletion for not following the Facebook Community Standards…”
If you fall for the ruse and click the “Appeal Now” button, it will take you to a phishing page where you’ll need to log in and authenticate your account with 2FA. If you enter the one-time passcode, the scammers can gain full access to your account!
Source: HackRead
Stay Safe & Turn On 2FA!
Remember, enabling two-factor authentication (2FA) on your Facebook account is essential for protecting it against hackers. For complete instructions on how to do so, click here.
For optimal online security and privacy, we also recommend our FREE tool, Trend Micro Check — an all-in-one browser extension and mobile app for detecting scams, phishing attacks, malware, and dangerous links.
Check out this page for more information on Trend Micro Check.
And as ever, if you’ve found this article an interesting and/or helpful read, please do SHARE it with friends and family to help keep the online community secure and protected.
Source: pexels.com
Report a Scam!
Have you fallen for a hoax, bought a fake product? Report the site and warn others!
Scam Categories
Help & Info
Top Safety Picks
Your Go-To Tools for Online SafetyDisclaimer: Some of the links here are affiliate links. If you click them and make a purchase, we may earn a commission at no extra cost to you.
- ScamAdviser App - iOS : Your personal scam detector, on the go! Check website safety, report scams, and get instant alerts. Available on iOS
- ScamAdviser App - Android : Your personal scam detector, on the go! Check website safety, report scams, and get instant alerts. Available on Android.
- NordVPN : NordVPN keeps your connection private and secure whether you are at home, traveling, or streaming from another country. It protects your data, blocks unwanted ads and trackers, and helps you access your paid subscriptions anywhere. Try it Today!
- Incogni : Incogni automatically removes your personal data from data brokers that trade in personal information online, helping reduce scam and identity theft risks without the hassle of manual opt-outs. Reclaim your privacy now!
Popular Stories
As the influence of the internet rises, so does the prevalence of online scams. There are fraudsters making all kinds of claims to trap victims online - from fake investment opportunities to online stores - and the internet allows them to operate from any part of the world with anonymity. The ability to spot online scams is an important skill to have as the virtual world is increasingly becoming a part of every facet of our lives. The below tips will help you identify the signs which can indicate that a website could be a scam. Common Sense: Too Good To Be True When looking for goods online, a great deal can be very enticing. A Gucci bag or a new iPhone for half the price? Who wouldn’t want to grab such a deal? Scammers know this too and try to take advantage of the fact. If an online deal looks too good to be true, think twice and double-check things. The easiest way to do this is to simply check out the same product at competing websites (that you trust). If the difference in prices is huge, it might be better to double-check the rest of the website. Check Out the Social Media Links Social media is a core part of ecommerce businesses these days and consumers often expect online shops to have a social media presence. Scammers know this and often insert logos of social media sites on their websites. Scratching beneath the surface often reveals this fu
How do I recover my crypto after it’s stolen? What happens if your crypto wallet is compromised? Can stolen crypto be traced, and can police actually recover crypto in 2026? These are the questions most people ask within minutes of realizing their wallet has been drained. Crypto theft is fast, quiet, and unforgiving. By the time most victims notice something is wrong, the funds are already moving across the blockchain. Once seen as a problem for exchanges and whales, crypto theft now heavily affects everyday investors. Phishing links, fake support chats, wallet approval scams, SIM swaps, and malware attacks have become common. Knowing what recovery realistically looks like—and what it doesn’t—can prevent panic, bad decisions, and costly follow-up scams. In a Nutshell Crypto recovery is possible, but only in limited situations Blockchain transactions are irreversible, but stolen crypto can still be traced Speed and documentation matter more than optimism Police and exchanges play a bigger role than private recovery services Guaranteed recovery offers are almost always scams Is it Actually Possible to Recover Stolen Crypto? Yes, crypto recovery is possible, but only under specific conditions and rarely through direct action by the victim. Blockchain transactions are final by design. Once crypto is sent and confirmed, it cannot be reversed. There is no central authority, no chargeback process, and no technical “undo” button, even if the transaction was clearly fraudulent. This is where many people ask whether stolen crypto can be traced. In most cases, it can. Every transaction