The FBI was recently made aware of phishing attacks targeting users of the popular social networking web site, www.myspace.com (MySpace).
These attacks have come in the form of a bulletin titled "CHECK OUT these old school pictures...". When a user clicks on the hyper link to view the pictures, they encounter a screen that is an exact reproduction of the MySpace login screen. However, this offer and its corresponding web site are not affiliated with MySpace. These attacks may be a vector to introduce malware, such as a trojan virus, to steal financial information. And while MySpace users do not typically store financial information on their personal pages, phishers may be gambling that the login information for users' MySpace accounts is the same for other accounts at financial institutions, online auction web sites, or online payment systems.
Consumers should be very cautious when providing login information to web sites they did not directly visit. Consumers are further advised against using the same user names and passwords for their various online accounts.