Facebook has become one of the world’s most popular social networking sites since it rolled out in 2004. There are nearly 2 billion active monthly users worldwide.
With that many users, it’s no surprise that cybercriminals are always populating the site with new scams. There is a new scam circulating now that you need to know about.
The latest scam circulating on Facebook
A popular technique criminals use is piggybacking on major events, like holidays. The latest Facebook scam does just that.
In honor of Mother’s Day, a coupon worth $50 off your next purchase at Lowe’s has been making the rounds on Facebook. The problem is, the coupon is fake, it’s a phishing scam. Here is an example of what the coupon looks like:
Image: Example of fake Lowe’s coupon. (Source: Facebook)
The phishing scam works like this: You click on the coupon posted to Facebook and it takes you to what looks like an official Lowe’s page. Once there, you’re asked to complete a survey. What’s really happening is the criminals behind the post are collecting victims’ personal information that they enter into the survey.
Here is a statement made by Lowe’s on its official Facebook page: These coupons are not offers extended by Lowe’s. It is a scam and Lowe’s is unable to honor the coupon.
This isn’t the first phishing scam we’ve seen and it definitely won’t be the last. That’s why you need to be prepared and know how to spot a phishing attack.
How to stay protected from phishing attacks
- Be cautious with links – If you get an email or notification that you find suspicious, don’t click on its links. It’s better to type the website’s address directly into a browser. Before you ever click on a link, hover over it with your mouse to see where it is going to take you. If the destination isn’t what the link claims, do not click on it.
- Do an online search – If you get a notification about something that seems shady, do an online search on the topic. If it’s a scam, there are probably people online complaining about it and you can find more information.
- Watch for typos – Phishing scams are infamous for having typos. If you receive an email or notification from a reputable company, it should not contain typos. Typically, there are signs that give away the fact that an email is fake. Can you spot one? Take our phishing IQ test to find out.
- Use multi-level authentication – When available, you should be using multi-level authentication. This is when you have at least two forms of verification, such as a password and a security question before you log into any sensitive accounts. Click here to learn more about two-factor authentication.
- Have strong security software – Having strong protection on your family’s gadgets is very important. The best defense against digital threats is strong security software.