I was just "victim" of a very elaborate phishing attempt. I quickly googled and couldn't find anything, so I think it's safe to post and let people know about it.

It started with an email that said that my account was subject to deletion because I had "multiple accounts". The email was a big giveaway, as the from: (signed) was sent by a domain registered under Namecheap:

https://i.imgur.com/qETyyz9.png

https://i.imgur.com/7kmixix.png

Also, the link of the email was to `https://apps.facebook.com` (which was also suspicious).

Now, the page looks VERY real: https://i.imgur.com/bWVX9tY.png

There's a big CASE ID at the top and a Scary message that reads: "Warning: Our Systems Detected You Have Multiple Accounts"

Again, the `apps.facebook` domain gives it away, but you must know that it's a third-party app.

If you click on the OPEN A NEW CASE button, it shows you a pretty simple page: https://i.imgur.com/bWVX9tY.png

But if you try to submit something, it asks for your FB password: https://i.imgur.com/XHuj6jm.png

Somehow, they're checking if the password is valid (maybe using some sort of Selenium-like method). I'm not going to try by giving them any real password :)

Anyway, I was able to catch it, but it is indeed pretty elaborate and good looking scam. Be safe!

EDIT: If you want to see the phishing page live (AT YOUR OWN RISK) follow/construct this URL: g5e [dot] tech [slash] entry.php?notify=373839&refid=10492806878733

https://i.imgur.com/sFSjMye.png