A new phishing attack against Facebook has surfaced recently using the domain fbaction.net. Whenever I see these things I always reset my browser and try signing in with fake details to see what happens. In this case I got a nice surprise. When I got redirected to Facebook I got this...

Facebook gets something right

This is fantastic. Every site should do this. It's a really simple check to do and immediately informs the user that they have probably been compromised complete with advice as to what they should do next.

Top marks to Facebook!

blog comments powered by Disqus