User Login

Help Community Login:

Starbucks Free Voucher Giveaway on Facebook: Scam!

1 reply [Last post]
BRIANNA's picture
BRIANNA
Moderator (Watching Over The Masses)Premium Member (Silver)I use FirefoxI use Google ChromeI use SafariWindows UserThe Dr. left the stem off the apple!
Relationship Status:
Taken
Joined: 02/27/2011
Posts: 111
Drops: 197
Mood: Optimistic

There's another scam going around on Facebook, this time it's a Facebook scam promising to give away a $100 ("wow!") Starbucks card for free. Amazing huh? They just want to give away tons of money!

Well, as usual, if it sounds too good to be true, it usually is. Take a look...

 
Starbucks,Facebook Scams,Malware,Virus
First thing anyone should do when they come across one of these is to hover your mouse cursor over the link and look at the URL it will take you to if you click it. It should at least point to the website of the company. As you can see in the screenshot of this Facebook scam, this link is pointing to a DropBox file (hxxp://dl270.DropBox.com/s/o5n06d9xqduw7v3/m3.html?kX6BGz3 in this case), which is obviously completey unrelated to Starbucks. That's your first red flag to know not to click the link (and to report the link to Facebook as spam / MalwareMalwarebytes Anti-virus / Anti-malware). If fact, this should be all you need to know to pass on clicking into it.

 

Starbucks,Facebook Scams,Malware,Virus
Should you still end up clicking into the scam link you'll (in this case, since this scam will likely change slightly in the future when people get savvy to this exact one) first be taken to the DropBox link, which re-directs to lovecoffeestar.net; a page designed to fool you into thinking it's still a Starbucks website page, including the page logo, page title and the favicon, with a button to share it on your Facebook wall (to continue spreading this scam). As can be seen in the screenshot there have already been at least 1800+ Facebook users who have unfortunately fallen for the scam.

If you happen to fall for one of these scams you should:

  • Look through your Facebook apps to look for any new, suspicious apps and delete them; sometimes these scams will add malicious apps that can steal your personal information, post MalwareMalwarebytes Anti-virus / Anti-malware / scams unknowingly to your newsfeed, or worse.
  • Delete the post from your own newsfeed to prevent your own friends from falling for the scam.
  • Post a follow-up status warning your friends that you accidentally posted the scam and to not click it, or post it on their own status.
  • Report the link / status / post to Facebook using the little button to the top right of all Facebook statues.
  • If possible, report the actual link to any 3rd party service that the scam is using so that they can take their own further action. For example, this scam uses a DropBox account to host it's file for re-directing as was shown in the screenshot; you can report that link to DropBox for them to work their magic, maybe even catching the perp. Any screenshot you may take as proof when reporting will only help out that much more.

Be sure to follow GeekDrop on Facebook to keep on top of all of the latest scams.

I Averaged: 4 | 4 votes


Read More ...





Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.
GeekDrop's picture
From:
The Drop!
GeekDrop
Co-Admin. Cuz Even God Rested On The 7th DayModerator (Watching Over The Masses)Joined the Dark SidePremium Member (Gold)I'm a Code Monkey!The Steel CurtainComputer Dr. (Let's clean up that messy Virus!)I use FirefoxI use Google ChromeI use Internet ExplorerI use SafariI'm Here To Help, & Have Proven It!Linux UserWindows UserI donated more than $20+ to GeekDrop!I donated to GeekDrop simply because I love it!I spend all day Photobucketing!Booga Booga BoogaI took a bite of the AppleI'm MagicThe Dr. left the stem off the apple!The JokerSomeone thinks you're a cutlet above the rest!
Relationship Status:
Taken
Joined: 01/20/2009
Posts: 370
Drops: 1109
Mood: Smart
Re: Starbucks Free Voucher Giveaway on Facebook: Scam!

Laughing, and here's how you catch a scammer, or at least the not-so-bright ones (like this guy) ...

 

When you click the link, if you immediately click your browser's Stop button (or if you have the right addons, disable redirects) before it redirects to the final fake page, in other words, stop it on the page that handles the redirection, then view it's source code you'll see this:

 
Screenshot:
Facebook Starbucks Giveaway Scam Busted
Or as raw text:

<html prefix="og: http://ogp.me/ns#">
<head>
 
<meta property="og:title" content="Free $100 Starbucks Voucher - August 2012"/> 
<meta property="og:type" content="website" />
<meta property="og:url" content="http://dl413.dropb ox.com/s/19hmfqrlf5nayc7/m.html"/>  
<meta property="og:image" content="http://www.starbucks.com/static/images/global/logo.png"/>  
<meta property="og:site_name" content="Starbucks"/>   
<meta property="og:description" content="Claim your Free Starbucks voucher now!"/>
 
<meta property="f b:admins" content="prince.patridge"/>
 
<script type="text/javascript">top.location.href = "http://lovecoffeestar.net/";</script>
</head>
</html>
 

I highlighted the relevant piece of code: the meta property named "fb.:admins" is a Facebook-specific meta tag that tells Facebook who owns the external webpage so that they can view statistics on a Facebook "insights" page, amongst other things. So in this case "prince.patridge" is the guy who created this particular scam. (Click the link on his name for his actual page, and / or click this link to see a screenshot of it Devil ).

 

Taking the investigation one step further, you can do a Whois (for example using GoDaddyGoDaddy Domain Registrar: here) on the domain name that he's using to host the final scam page that gets redirected to: "lovecoffeestar.net", which shows this:

 
Facebook Starbucks Giveaway Scammer Prince Patridge Busted!

You can see all relevant information on it including the company / companies involved in registering the domain, the date it was registered, in which case was registered literally the day the scam went out onto Facebook, and so on. Btw, while doing this quick sniffing around I was also redirected to another domain he used for this scam: "lolibucks.net". The name itself is a bit creepy ... anyone who's been around the internet long enough knows that the term "loli" usually means "underage girl", and even refers to pre-teen girls for the pedophile loving types, and having the word "bucks" in it seems to infer it's being used as some sort of monetary profit gain, whether getting paid as an affiliate by a porn sponsor or something similar. Another Whois shows it's also owned by the same person, with all matching information as the previous one, including being registered the same day as well:

Facebook Starbucks Giveaway Scammer Prince Patridge Busted, and a potentially a pedophile

So I think it's safe to say that following the stereo-typical "scammers and spammers are the lowest of the low", this guy is the bottom of the bucket, and not particularly smart to boot.


Shhh.. dont tell anyone, but we also have a private forum area with the really good stuff, see?

Who's New

KaylaMorgan's picture
arxeis77's picture
eyoungren's picture
RavingNutter1972's picture
Mridul's picture
Holyryan2346's picture
washim's picture
yeniban's picture
siam3933595's picture
al360's picture
militarymom's picture
Simra's picture
srikanth's picture
joshter1950's picture
bittu's picture
facebook codes exploits tips tricks Phrozen Crew
All contents ©Copyright GeekDrop 2009-2017
TOS | Privacy Policy