Facebook Password Giveaway -

Users are told to copy a malicious script or paste their password into a comment or browser console to unlock a feature.

Why do users fall for password giveaways? Facebook Password Giveaway

| Driver | Explanation | |--------|-------------| | Authority bias | Fake accounts impersonating Meta, Facebook Support, or celebrities. | | Scarcity | “Only 3 winners – submit password now.” | | Lack of technical literacy | User does not understand OAuth vs. password sharing. | | Greed | Prize value outweighs perceived risk (e.g., $1,000 gift card). | Users are told to copy a malicious script

Case example (2024): A fake “Facebook Gold Giveaway” page with 500k followers collected 12,000 passwords in 48 hours, leading to $3M in cryptocurrency theft via hacked accounts. Why do users fall for password giveaways

If a user realizes they participated in a password giveaway: