Cybercriminals have decided to once again attack the users of the popular social networking site - Facebook. The attack is intended to take over the user's account along with the website maintained on the portal.

A phishing attack involves sending a message that resembles that of a Facebook administrator. The message also has the official logo of the portal. After opening the message, The user is redirected to the post, where he or she  learns that his or hers site will be removed from the social networking, as a result of violations reported issued by the another Facebook user.

As always, the user can evade the accusation by clicking on the link to the page where he or she must enter the login information for the portal. By doing so the user unwillingly provides the cybercriminals with all the means necessary to take over the control of the account.

The entire scam was revealed by the Niebezpiecznik portal, which advises the Facebook users to activate the two-factor authentication option. When activated, the two-factor authentication option will force the users to enter a special security code (or use U2F token) each time when someone tries to access the Facebook account from unrecognizable (unregistered in the system) computer or mobile device.