As a rule of thumb, DO NOT CLICK on anything until you’ve taken some time to consider that it may be a scam. The IT department at our company is always warning us about possible scams, what to do, what not to do, and what to look out for. There are multiple steps they’ve taken to prevent us from becoming complacent or caught off guard. Like many other companies, we also have a boldly faced warning highlighted in yellow that appears at the top of every email we receive from an outside source that reads:
CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe.
Authorities are warning Facebook and Instagram users to keep an eye out for a phishing scam that’s already tricked thousands of people into revealing sensitive information.
Fox reported the scam involves a message, which appears in a user’s notifications, that says, “Your page goes against our community standards.” It goes on to read, “If we do not hear from you in the next 24 hours, we may permanently delete your page, and the decision will be irreversible.” The message then provides a link that, when clicked, collects the user’s vital info. It’s fooling many people because it appears in their notifications that they are not accustomed to getting a phishing attempt.
The problem with the message is neither Facebook nor Instagram would give a user a 24-hour notice for a community standards violation, says cyber expert Kurt Knutsson. “Platforms like Facebook, Instagram, and TikTok will take a post or page down immediately, as soon as they recognize that it violates the guidelines,” he says. “They may send you a message after the fact to explain why they took the post down, but they will never give you the chance to explain yourself before they delete a post.” To prevent future bogus messages from arriving, Knutsson recommends enabling two-step verification on social media accounts.