Friday, May 15, 2009
Cogito Ergo Sum (More on .im and Phacebook Phishing)
.im therefore .im not (who you think .im)
Scam / Fraud / Hoax Alerts
Source: Typepad
Complete item: http://timworstall.typepad.com/timworstall/2009/05/ponbonim.html
Description:
No, don't click any links to ponbon.im. This is a virus. More to the point ponbon.im is a worm, one that when you click on it will offer you a page where the phishers will attempt to steal your login and password.
It's called ponbon.im (and in some cases, another URL ending in .im). It has the potential to compromise your account. Following a link to that site could be big trouble if you don't have updated antivirus software or you're not using a secure browser. It's also recommended that you download the latest updates for your operating system.
Worse than your computer getting infected, you may lose some of your Facebook friends when it uses you as a host to infect their their accounts as well. Yup, it will indeed make you very unpopular, clicking on a pombon.im link: As we've told you many times before, we're telling you again - do not click on suspicious links inside your Facebook messages and emails.
There is a new scam out there called 'Ponbon.Im' and other URLS ending in '.Im' that people are accidentally clicking on, infecting their computers or accounts. There are other such links as well, it ain't just pombon.im.
There's currently a big scam running on Facebook and a lot of accounts have been compromised. If you receive an email like check ponbon.im, check 121.im or check 151.im, just delete the email and DO NOT click the link, because it may compromise your account too. It looks like ponbon.im is already blocked but there are others out there:
UPDATE: We're told the scam is now using multiple URLs ending in ".im", as Facebook has blocked ponbon. Simple rule: don't click links in Facebook messages that look suspicious. Be warned that there's another Facebook scam going around today: compromised accounts are sending out links to a site named "ponbon.im", as shown in the image - do not visit this site. Our guess is that the attack is using accounts that were compromised previously - if you receive the mail, simply delete it without visiting the link. At the moment, probably the best advice is not to click on anything that is .im, whether it is ponbon or not.
E-Secure-IT
https://www.e-secure-it.com