Phishing attacks on Facebook (afoi.ru, areps.at, bests.at, bestspace.be, brunga.at, indigoline.be, kirgo.at, nutpic.at, picoband.be, ponbon.im, redbuddy.be, redfriend.be, sweeter.be et al)

Another useful discussion on this can be found on: http://anshprat.wordpress.com/2009/05/21/areps-at-kirgo-at-phishing-attacks-on-facebook/

Indeed, Facebook should notify all users about this issue. It looks like they cannot control it as more and more accounts get sour.

Blocking only .be domains will not help, it can be any domain. They need to trace those guys and punish them for life for doing something nasty like this.

An attack of this scale was well organised, used many servers and withstood weeks of Facebook trying to fight back. The only real thing Facebook did – was asking those affected to reset their passwords.

Conspiracy theory goes like this:

Who is interested in putting Facebook down? A competitor? The government? A third party?

An investmet bank, who was advising Facebook on their IPO would earn dozens of millions – so their rival might decided to kill the deal.

Or was it the buyer that is trying to put the price down this way?

Or was it another Al Qaeda attack?

I guess a book will be written about this case in some ten years by a Facebooker or a hacker or both.

A new figure was put on Facebook’s value when it confirmed that a Russian group had invested $200m for a stake of nearly 2%, valuing the privately owned social-networking website at $10 billion. In October 2007 Microsoft bought a 1.6% stake, which valued Facebook at $15 billion. Analysts gave warning that, given the recent decline in share prices of tech companies on the stockmarket, a $10 billion valuation for Facebook may still be too optimistic.

One can only wonder, if the past attack had to do anything with this private placement to reduce the price for some 33 per cent.

In any case, even with optimistic 100 million user accounts, adjusting for all duplicate, spam, inactive ones, let’s say Facebook has 1 million of active users. Even if those generate $100 dollars of revenue each a year – even by applying a multiple of (x 10) this all give a valuation of $1 billion.

Call me sceptical, but I refused to believe in Skype valuation by eBay of $2 billion. Two years later – I am certain.ly not the one to bite my elbows.

All those Facebook investors: good luck!

There is another attack is currently going on. Off-facebook, just a massive spam wave. They sent messages like:

Dear Facebook user,

In an effort to make your online experience safer and more enjoyable, Facebook will be implementing a new login system that will affect all Facebook users. These changes will offer new features and increased account security.

Before you are able to use the new login system, you will be required to update your account.

Click here to update your account online now.
If you have any questions, reference our New User Guide.

Thanks,
The Facebook Team

Update your Facebook account

[Update Button]

This message was intended for xxx@yyy.com.

Facebook’s offices are located at 1601 S. California Ave., Palo Alto, CA 94304.

So, do not click on this scam mailing!

Another trace of Russian hackers: http://hi-tech.mail.ru/news/misc/russina_hack_socset.html