ID thieves masquerading as Facebook security team
![ryan-naraine.jpg](https://www.zdnet.com/a/img/resize/58705b1ab848cb0209d7d7d504dffaab176d93aa/2014/07/22/4b4e2273-1175-11e4-9732-00505685119a/ryan-naraine.jpg?auto=webp&fit=crop&frame=1&height=192&width=192)
According to Kaspersky Lab's David Jacoby (see important disclosure), the attackers aren't simply trying to lure the victim to a phishing site. Instead, they are compromising Facebook accounts and changing the profile picture and account name and sending warnings that appear to come from Facebook's security team.
The "Facebook Security" name was created with special ascii characters replacing letters such as “a” “k” “S” and “t” (see image on the right).
The message attempts to convince Facebook users that their account has been turned off and pushes a link to "reconfirm account security."
This is where the data gets pilfered, Jacoby said, warning that a second layer of the attack will attempt to trick users into entering credit card numbers, including CSC/CVV code.