Got a message from a coworker that suggested I was in a video. Naturally, I am supposed to click on it, but it felt wrong. A quick Duck Duck Go search revealed it to be a virus.
If you think a virus was installed on your device, then my advice is to find a trusted anti-virus software to scan your computer. There are also malware apps to scan & protect your phone. Some carriers offer them for free.
Some reports suggest if you click on it, then you get a Facebook login page.
Only, it is not a real one and designed to capture your credentials. That gives another party your credentials so that they can:
- send this out as messages to your contacts
- capture more information from your account
If you fell for the 2nd login issue, then my advice is to:
- Immediately change your password.
- Kick off all sessions in the “Security and Login” page. There is a “Log Out Of All Sessions” option.
- Also in the security section, setup two-factor authentication.
- Turn on getting alerts about unrecognized logins.
Of all the things I can report, I cannot report this?
It seems like Facebook should be able to detect this virus or phishing by now. What I can see of the link goes to a Facebook server: si-chao.cstools.facebook.com So, at least the link to virus/phishing is on their servers enough that they could check for its presence.
The person who sent it me says the account was locked out for 24 hours for behaving suspiciously. The act of sending hundreds of messages in a few seconds alerted Facebook to automated behavior. So, these are accounts they could be checking for being compromised.