As threat actors continue to find new ways to target their victims, social media has become the new frontier for cybercrime.
It seems like nearly everyone has experienced some kind of email or click-based scam.
Whether it’s an attempt at identity theft, picking up a virus from a questionable website, or having a scammer pretend to be a rich foreigner seeking help moving money, the forms of online deception are nearly limitless.
But we’ve also gotten wiser over time. Traditional spam approaches have become less effective, leading spammers to turn to social media, where your defenses might not be as high.
This article will explore how Facebook has been exploited by scammers and cybercriminals in recent years, largely by preying on the trust people tend to exhibit in this online space.
You’ll discover tips on the types of fake Facebook friend requests that can potentially harm you, your finances, and your online reputation.
What makes fake Facebook requests so effective
Facebook has a uniquely social quality that makes it particularly vulnerable to cyberattacks.
You don’t expect any trouble from your “friends.” However, unless your privacy settings are adjusted to restrict access, accepting a Facebook friend request allows that person to view all your profile information, including your close friends, birthdate, relatives, hometown, and more.
From there, it’s only a few steps to cracking a weak password or infecting accounts with viruses and scams. Since these attacks come from “friends,” who would suspect them?
The most obvious way cybercriminals exploit Facebook users is through malicious friend requests. You might think simply refusing friend requests from people you don’t know solves the problem, but things aren’t always that simple.
Many people have hundreds, if not thousands, of Facebook friends and often accept new requests without a second thought—even if they don’t know the person personally. This is especially true for those using social networking to promote themselves professionally.
Requests from acquaintances of your other Facebook friends can seem perfectly legitimate, even if they’re not.
All it takes is for one of your friends to accept a fake request.
Identifying fake Facebook friend requests
Often, you can spot a fake account by looking at the profile. Some scammers are particularly skilled at disguising their profiles, but for most cases, there are clear warning signs:
- Attractive photos: Most scammers use photos of beautiful people for their fake profiles. After all, who wouldn’t want to believe that an attractive person is interested in getting to know them?
- Few or no posts: Scammers set up fake accounts algorithmically and don’t put much detail into them. If a profile has few posts, all of which are very recent, chances are it’s fake.
- Random likes: Fake accounts often like numerous unrelated pages and posts to seem more legitimate. If the profile’s likes seem random or contradictory, it’s likely fake.
- Few friends: Someone new to Facebook typically friends people they know first. If the profile’s friends list doesn’t include anyone you know or only shows one or two friends, it’s probably fake.
- Doesn’t respond to messages: A genuine person interested in getting to know you will answer message requests. If you think the profile is real, send a message and ask something friendly or trivial. If there’s no response, it’s likely a bot.
The dangers of fake Facebook accounts
You might think, “So what if I have a few fake friends? What could happen?” Unfortunately, fake friends can expose you to several threats.
Here are just a few. Later, we’ll highlight some other scams to avoid on Facebook.
Hacking
Once a scammer is a member of your friend list, he or she may be able to use your profile information and the things you post to guess your password or compromise the account of someone you know.
If this individual succeeds, he or she has gained a channel people trust, which makes it easier to scam even more people.
Scams
Fake accounts are often used to carry out scams, like the “stranded in London” phishing attack, in which a scammer posing as your friend asks for money.
Though there are many variations to this kind of request, the gist is that your “friend” urgently asks you to wire him or her a substantial amount of money in a short time.
By the time you realize it’s not your friend who has contacted you, it’s often too late.
Identity theft
Even more potentially harmful is the possibility of a compromised friend’s account sending you a link to a malicious application or download, often with a message like, “Hey, I thought you’d enjoy this news story” or something similar.
Once you click the link, phishing software gets installed on your computer, which can lead to identity theft, viruses, and other malicious activity.
Other Facebook scams to look out for
Facebook is a popular platform for connecting with people and businesses, but it’s also a hotspot for scams by bad actors. Be aware of these common Facebook scams:
Phishing scams
We just briefly mentioned this above. But this is a biggie, so read it again.
Phishing scams involve cybercriminals sending fake emails or messages that appear to be from Facebook.
These messages often contain links to websites that look like Facebook but are designed to steal your login credentials. Always verify the source before clicking on any links and never provide personal information to unverified sources.
Fake charity scams
Scammers create fake charity profiles or GoFundMe campaigns to solicit donations for non-existent causes.
These scams often tug at your heartstrings by posting photos and stories of people in need. Always verify the legitimacy of a charity before making any donations.
Facebook Marketplace scams
The Facebook Marketplace is a common place for scams. Fraudsters may sell broken items, counterfeit products, or never deliver the purchased goods. Always meet in a public place and inspect items before making any payments, especially digital payments on sketchy payment gateways.
Phony job offers
Scammers post fake jobs, offering high pay for minimal work. As part of the application process, they ask you to provide personal information like your social Security number or bank details, which can lead to identity theft. As such, you should always research a company before sharing your sensitive personal information.
Fake friend requests
Scammers create fake profiles to gather personal information or spread malware. Be cautious about accepting friend requests from people you don’t know.
Romance scams
In romance scams, fraudsters create fake profiles to form online relationships. Over time, they gain the victim’s trust and eventually ask for money to deal with a fabricated emergency.
Never send money to someone you have only met online. This is another form of catfishing that can hurt you financially just as much as emotionally.
Investment scams
Scammers use Facebook to promote fake investment opportunities, often using celebrity endorsements. Be skeptical of investments that seem too good to be true.
Suspicious links
In today’s fast-paced world, it’s easy to mindlessly click on something without stopping to vet it first. But using the internet on autopilot can be dangerous.
Scammers send messages containing links that claim to show something interesting about you, such as a video or news article. However, these links often lead to malicious websites designed to steal your information or infect your device with malware.
To protect yourself, slow down, read carefully, avoid clicking on suspicious links, and verify the source before interacting with them.
A good rule to follow is to message your friend (the “sender”) on a different platform like WhatsApp or Telegram and ask that person if he or she sent this message to you. If not, delete the message, being careful to avoid clicking on anything.
Discount shopping scams
Fraudsters promote fake discounts and coupons through Facebook ads. These ads often lead to websites that steal your payment information or install malware on your device. To avoid becoming a victim, be wary of deals that seem too good to be true and only shop from reputable websites.
Quizzes and games
Some quizzes and games on Facebook ask for personal information that bad actors can use to answer your security questions on other websites. Be cautious about the information you share and avoid quizzes that ask for sensitive details.
*****
As you can see, fake Facebook accounts pose serious risks, including an abundance of scams. So, you need to be more diligent than ever about locking down your online privacy.
Whenever you get a friend request from someone you don’t recognize, make sure you vet it thoroughly.
Similarly, if friends send you unusual requests or strange links on Facebook, be very cautious before interacting.
And the dangers go far beyond Facebook. Merely having personal or private information floating about on the internet makes you a potential target.
This is why it’s so important to perform regular self-audits to see what someone can find when they search for you.
A quick and easy way to do this is to use our free reputation report card. If you find things you’re not happy about other people seeing, then you’ll want to take steps to protect your digital privacy.
After you’ve completed your self-audit, the next is to speak with an online reputation management expert to walk you through how to take charge of your online presence.
Facebook is a trademark of Meta Platforms, Inc.