Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsSocial networks, social media and toolsSocial engineering hack
MadEngineer

4287 posts

Uber Geek

Trusted

#303698 1-Mar-2023 16:00
Send private message

I received a Facebook message from someone I’d not caught up with for a while. Conversation went like:

Hi, how have you been?

Can you do me a favour?

I just bought a new phone and Facebook is not letting me in they ask for code approval from friend so I will send you the code you can it back to me thanks


… with me responding in between.

Then I get a txt message: nnnnnnnn is your Facebook password reset code.


Of course this is a scammer trying to trick me into thinking I’m helping someone reset their password through some friend assist feature but fortunately I realised they were tying to get into mine.

Damn dodgy and I imagine the same method could be used by any password reset function that uses 2FA




You're not on Atlantis anymore, Duncan Idaho.

Create new topic
wellygary
8325 posts

Uber Geek


  #3043687 1-Mar-2023 16:16
Send private message

So they had managed to compromise the account of the long lost acquaintance??,

 

or were they able to impersonate them somehow??



MadEngineer

4287 posts

Uber Geek

Trusted

  #3043700 1-Mar-2023 16:54
Send private message

Yeah they had been “hacked” and I called them to check. Their account was taken over and they were using their account to try and get into mine … from mine they’d then try to get into the accounts of all my FB contacts etc etc.




You're not on Atlantis anymore, Duncan Idaho.

xpd

xpd
Geek @ Coastguard NZ
13767 posts

Uber Geek

Retired Mod
ID Verified
Trusted
Lifetime subscriber

  #3043704 1-Mar-2023 17:09
Send private message

If they did that with me, they'd soon find I don't have many friends to try it with..... ;)

 

 




       Gavin / xpd / FastRaccoon / Geek of Coastguard New Zealand

 

                      LinkTree

 

 

 



networkn
Networkn
32351 posts

Uber Geek

ID Verified
Trusted
Lifetime subscriber

  #3043776 1-Mar-2023 22:39
Send private message

xpd:

 

If they did that with me, they'd soon find I don't have many friends to try it with..... ;)

 

 

 

 

 

 

I'll be your friend!

Wheelbarrow01
1724 posts

Uber Geek

Trusted
Chorus

  #3043784 2-Mar-2023 00:31
Send private message

Yea I got the exact same message a few weeks ago. It came from someone who is in a particular Facebook group that I am also in. We had exchanged messages briefly a month or two ago, but I don't know him from a bar of soap and we are not direct friends on Facebook.

 

After I didn't answer the first message, I got follow up messages that were increasingly desperate (which I also ignored).

 

Since then I have heard that this type of scam is doing the rounds quite a lot.

ANglEAUT
2324 posts

Uber Geek

Trusted
Lifetime subscriber

#3043852 2-Mar-2023 10:03
Send private message

networkn:
xpd: If they did that with me, they'd soon find I don't have many friends to try it with..... ;)
I'll be your friend!

 

On FB or IRL? Maybe on GZ?

 

😁




Please keep this GZ community vibrant by contributing in a constructive & respectful manner.

richms
28187 posts

Uber Geek

Trusted
Lifetime subscriber

  #3043861 2-Mar-2023 11:11
Send private message

Yeah and its sad how many people will go along with it. This is why allowing a SMS only as a way to get back into an account for forgetting a password is IMO braindead. 

 

Forgetting a password should be hard to recover from. They make it too easy resulting in scams like this working. I really hate having to give places a mobile number when they are this casual with what they will use it for.




Richard rich.ms

 
 
 
 

Move to New Zealand's best fibre broadband service (affiliate link). Free setup code: R587125ERQ6VE. Note that to use Quic Broadband you must be comfortable with configuring your own router.
Gurezaemon
~HONYAKKER!~
1355 posts

Uber Geek

ID Verified
Lifetime subscriber

  #3043862 2-Mar-2023 11:20
Send private message

My wife had to deal with this from her workmate last week. I eventually managed to get control of her account again, but it involved holding her passport up to the screen for Facebook to verify, twice.

 

The hacker was actively trying, in real time, to prevent her reauthorizing her own account, by changing passwords, etc. I still have no idea how.

 

Stealing someone's account is altogether too easy. I eventually convinced her to use the authentication thing instead of SMS, but it was a major PITA.




Get your business seen overseas - Nexus Translations

Senecio
2712 posts

Uber Geek

ID Verified
Lifetime subscriber

  #3043877 2-Mar-2023 13:11
Send private message

Half the time people give their accounts away freely. You know all of those seemingly innocuous posts that get 22K replies. 

 

"Your porn star name is:

 

  • Your favourite colour 
  • The name of your first pet
  • The street number of the house you grew up in"

Its all just harvesting personal information that you may have used in your insecure password. And people give this information away freely in the name of a bit harmless fun.

MadEngineer

4287 posts

Uber Geek

Trusted

  #3043974 2-Mar-2023 16:16
Send private message

Blue Bob 69

Wait what?




You're not on Atlantis anymore, Duncan Idaho.

Create new topic





News and reviews »

Air New Zealand Starts AI adoption with OpenAI
Posted 24-Jul-2025 16:00

eero Pro 7 Review
Posted 23-Jul-2025 12:07

BeeStation Plus Review
Posted 21-Jul-2025 14:21

eero Unveils New Wi-Fi 7 Products in New Zealand
Posted 21-Jul-2025 00:01

WiZ Introduces HDMI Sync Box and other Light Devices
Posted 20-Jul-2025 17:32

RedShield Enhances DDoS and Bot Attack Protection
Posted 20-Jul-2025 17:26

Seagate Ships 30TB Drives
Posted 17-Jul-2025 11:24

Oclean AirPump A10 Water Flosser Review
Posted 13-Jul-2025 11:05

Samsung Galaxy Z Fold7: Raising the Bar for Smartphones
Posted 10-Jul-2025 02:01

Samsung Galaxy Z Flip7 Brings New Edge-To-Edge FlexWindow
Posted 10-Jul-2025 02:01

Epson Launches New AM-C550Z WorkForce Enterprise printer
Posted 9-Jul-2025 18:22

Samsung Releases Smart Monitor M9
Posted 9-Jul-2025 17:46

Nearly Half of Older Kiwis Still Write their Passwords on Paper
Posted 9-Jul-2025 08:42

D-Link 4G+ Cat6 Wi-Fi 6 DWR-933M Mobile Hotspot Review
Posted 1-Jul-2025 11:34

Oppo A5 Series Launches With New Levels of Durability
Posted 30-Jun-2025 10:15








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







RSS feeds
Main feed
Forums feed
Copyright
©2002-2025 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Affiliate links
Samsung
AliExpress
Wise
Sharesies
GoodSync
Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright