A Healthy Ride to Wealth


Caution: Trolls Are Attacking

As I have now an ad running on Facebook, I have also more visibility.

You should know that this visibility is not in all cases directed to the ones you target to become your fans.

no no no!

You also become visible to trolls!!!😈

I’m not talking about the good, cute little guys with big eyes 👀 and colorful flying hair that live in trees! No!

I’m talking about the insidious ones. Those crawling and hiding in the most obscure corners of the Internet.

They’ll do anything to have your money. 🤑 From their twisted minds, they imagine pitfalls and traps to fulfill their most malicious ambitions.

And like if just trolls weren’t enough, there are also the “Bad Bots“…

Bad bots are sneaky little programs that trolls use to scale up their dark activities, see “The Digital Guardian Blog“. These bots are built to act quickly and replicate themselves, which means they can turn small attacks, like data mining, brute-force attacks, and ad fraud, into much bigger problems.

What is an example of a bad bot?

Imagine a bad bot that’s constantly hitting up your website over and over again in just a short period, trying to steal your data or crash your server. Not cool, right?

While some of the less severe things bad bots do include messing up website metrics and occasionally hogging resources, they can also cause serious damage. If these bots go unnoticed, they can lead to major infrastructure attacks, theft, and a whole lot more.

Now, ever wonder how much of the internet is filled with bots trying to trick you?

Spoiler alert: it’s a lot!

According to the “2024 Imperva Threat Research report“, nearly 50% of all internet traffic is from non-human sources.

And here’s the kicker:

almost one-third of that traffic comes from bad bots. 😮

Yup, those sneaky buggers are everywhere, mimicking human behavior so well that they’re getting harder and harder to spot.

How this affect me?

The most common cyber attack from trolls that general people have to deal with as soon as they get visibility on the internet is something that is called “Phishing”. The following definition can be found in Wikipedia:

Phishing is a form of social engineering and a scam where attackers deceive people into revealing sensitive information or installing malware such as viruses, worms, adware, or ransomware. Phishing attacks have become increasingly sophisticated and often transparently mirror the site being targeted, allowing the attacker to observe everything while the victim navigates the site, and transverses any additional security boundaries with the victim. As of 2020, it is the most common type of cybercrime, with the FBI‘s Internet Crime Complaint Center reporting more incidents of phishing than any other type of cybercrime.

Well, the first times I was confronted with this sort of attack, I panicked for a long 2 seconds yelling “NOOO! Please give me another chance!” before I finally took over and realized it was fake.

Thereafter, I felt frustrated and insulted being targeted like this.

I understand it’s not personal.

So I report them when possible, or I just ignore and delete their message.

Now for me, they are more annoying than dangerous pitfalls. Thus I have to deal with it while staying careful.

Indeed.

Several times a week I’m being said that my Facebook page account will be banned or suspended in the next 24 hours if I don’t take action immediately, and correct the issue by clicking their links.

👉Sometimes it’s my profile picture (it’s a picture of myself😒) that is being attacked. They say it’s a fake and against the rights and copyrights of Neverland and it’s used without the permission of the author, etc. ;

Bullshit! 💩

👉Sometimes my ad content is against Facebook policies;

Again bullshit!

👉Sometimes they are suspending my domain name, or my Facebook page because it has received too much complaints.

That’s pure bullshit!

They are not short of tactics and bribing elements to tarnish and hack my account and it’s always a matter of urgency. They want me to believe their claim so, in panic, I would take the wrong decisions like clicking on their link and following their instructions.

How I recognize them?

In order to help me avoid those pitfalls, I made a research on how I could recognize phishing attempts by trolls and I thought that you would like to benefit from these information as well.

Recognizing Phishing Emails

Phishing emails are one of the most common ways Trolls try to trick you. Here’s how you can spot them:

  1. Check the Sender’s Email Address: Often, phishing emails come from addresses that look almost legitimate but have slight misspellings or extra characters. For example, instead of “service@paypal.com,” you might see “service@paypa1.com.”
  1. Look for Urgent or Threatening Language: Scammers often try to create a sense of urgency to make you act quickly without thinking. Phrases like “Your account will be suspended!” or “Immediate action required” are red flags.
  1. Suspicious Links or Attachments: Hover over any links (without clicking) to see where they actually lead. If the URL looks fishy (pun intended), don’t click it! Similarly, be wary of unexpected attachments.
  1. Generic Greetings: Phishing emails often use generic greetings like “Dear Customer” instead of your actual name. Legitimate companies usually personalize their emails.
Identifying Fraudulent Facebook Comments

Facebook is a great place to connect, but it’s also a hotspot for scammers. Here’s how to keep your guard up:

  1. Too Good to Be True: If someone comments that you’ve won a prize in a contest you didn’t enter, it’s likely a scam. Remember, if it sounds too good to be true, it probably is.
  1. Strange Links: Be cautious of comments containing links, especially if they are from people you don’t know. These links can lead to phishing websites designed to steal your personal information.
  1. Poor Grammar and Spelling: Many phishing attempts originate from non-native English speakers. If the comment is riddled with grammatical errors or odd phrasing, it’s a red flag.
  1. Requests for Personal Information: Legitimate businesses or people will never ask for your personal information in a public comment. If someone is asking for your email, phone number, or other personal details, don’t respond.

In my case, trolls often presented themselves as a Meta employee within a comment I received on Instagram, Facebook or Messenger. When I found the threat in my email inbox, they often disguise themselves under the traits of some group or business.

In their template, they may even have a nicely crafted icon, or some picture taken from a trustful company, to add credibility like “MetaMask”, a software cryptocurrency wallet, that looks in relation with their topic, but has nothing to do with my online activities. See the example I pasted here.

If I don’t recognize the sender, I google the name to find out. This could give hints on the legitimacy of the email.

For example, I received several emails pretending being from OVHCLOUD. The message was saying that my subdomain name will be erased and that they sent me several alerts to tell me. The sender address was different for each email but always with a domain that looks like it comes from OVHCLOUD.

After a fast search I found that this is a web hosting company, providing internet related services around the globe.

The company probably provides subdomain hosting services, but I have no concern with them. What rights do they have to banish my subdomain name? And for what reasons? My domain and subdomain are not even hosted by their servers and I’m not using any of their services.

For comparison, I give here two similar phishing emails I received (If you look at these images on a mobile phone, I apologize, you will have maybe to zoom in a little):

By observation, you see the urgency of taking action is a common thing.

Look the link in the text that differs in the convention used to access the case id.

Note also the signatures which differ between emails. The look is far from being professional.

“Meta Business” is not a real entity or business, it doesn’t exist alone. The real Meta will not identified itself like this.

Finally, look at the email addresses which have nothing to do with Meta. 😤

Staying Safe Across the Internet

Phishing can happen anywhere online, not just in emails or social media. Here are some general tips to keep you safe:

  1. Use Two-Factor Authentication: Whenever possible, enable two-factor authentication on your accounts. This adds an extra layer of security by requiring a second form of verification.
  1. Regularly Update Passwords: Make sure you use strong, unique passwords for different accounts and change them regularly. Avoid using easily guessable information like birthdays or common words.
  1. Stay Informed: Scammers are always coming up with new tricks. Stay informed about the latest phishing tactics by following tech news and cybersecurity blogs.Now that you’re armed with these tips, it’s time to put them into action.

Now that you’re armed with these tips, it’s time to put them into action.


I just wanted here to bring a head up on these trolls activities so that you don’t fall into their threats. Because sometimes they look very realistic and can get your anxiety to level up for the time you figure it out.

Stay alert and always think twice before clicking on links or providing personal information online.

But don’t stop there! Share this knowledge with your friends and family. The more people know about phishing, the safer we all are.

Stay safe out there!

Martin

P.S. I’m curious to know if you have had such experience of falling into a phishing attempt and what was the consequences for you? Let me know in the comments below it will be a pleasure to hear from you. 😊


Posted

in

Comments

12 Responses to “Caution: Trolls Are Attacking”

  1. Sarah Goulding Avatar
    Sarah Goulding

    This is a great post, Martin! Thanks for sharing your experience and tips on how to spot and deal with trolls and phishing scams. It’s so important to stay vigilant online, especially when running ads and getting more visibility. Your breakdown of the different tactics and how to recognize them is super helpful. It’s crazy how realistic these scams can look, but with the right knowledge, we can all stay one step ahead. Thanks for looking out for the community and spreading the word—stay safe out there!

  2. Marc Avatar

    Hi Martin,
    Great explanation and blog regarding phishing.
    The unfortunate side-effect of these also is how the elderly are falling into these scams and being stolen thousands of dollars.
    Being careful and not clicking on an unknown link is definitely the way to go!
    All the best!

    1. Martin Lefebvre Avatar

      Exactly! My mother use to be a good victim for phishing attempt. About 2 years ago she received a fake call from the bank telling her there was a suspicious activity on her credit cards. They said that a rep can meet her at home so she can give the cards to him along with the PINs and they will manage to send new cards. So the guy came took her cards, put them inside an envelop along with the PINs, and then he quitted.🤦‍♂️ The minutes after she had thousands of dollars taken from her credits accounts. When I told her she was tricked she said the guy who came was very polite and well dressed…🤦‍♂️

  3. Ezequiel Avatar

    Hi Martin! Thank you for shedding light on the realities of internet visibility and the lurking threats posed by trolls and bad bots. It’s alarming to realize how much of the internet traffic is from non-human sources and how sophisticated these scams have become. I can relate to your experience; I once received a message on my Facebook account stating that I was using an image without copyright permission and that I had only 24 hours to resolve the issue, or my account would be deleted. Thankfully, I didn’t see the email right away because I hadn’t checked my inbox for three days, so by the time I read it, the message was old. When I went to Meta to address the issue, I noticed the sender’s email had a suspicious look, with a small number of friends and an unfamiliar country, which raised my alarm. I proceeded to delete the message and reported it to Facebook. Your tips for spotting phishing attempts are incredibly helpful, especially the advice about checking the sender’s email and being wary of urgent language. I appreciate your commitment to raising awareness and helping others stay safe online. Let’s continue sharing this knowledge! Stay safe! 😊All The Best!

    1. Martin Lefebvre Avatar

      Thanks Ezequiel, I’m happy you found here useful information. For me it’s a plague occurring many times a week. I wanted to warn others about it so they keep safe. It demands so much effort to build a legit business not to get it destroyed by those stupid trolls.

  4. Meredith Moore Avatar

    Hi Martin,

    Wow, Martin, this is such an eye-opening post! I had no idea just how rampant these trolls and bad bots are, and it’s scary to think how easy it can be to fall into their traps. Your tips are incredibly valuable, especially the advice on recognizing phishing emails and staying safe online. I’ll definitely be more cautious moving forward.

    I haven’t had any major issues with phishing yet, but this makes me want to be on the lookout even more now. Thanks so much for sharing this!

    Meredith

    1. Martin Lefebvre Avatar

      Phishing is everywhere online as soon as you become visible you could be a target. And when you have an ad that run, and its your first one, you are stressed and care that you do all things right. I guess they know you have no experience so they bank on this to make you panic and want to take action. With running ads, they have plenty of angles from which they can attack .

  5. Andy Jacobs Avatar

    Unfortunately, I have been the target of one or two of these examples myself but certainly not to the same extent as you have. Thank you so much for laying out the detail so comprehensively and bringing our attention to a most important and dangerous fact of life. We should all be on our guard for these lowlifes and their dubious dealings. Thank you, my friend.

    1. Martin Lefebvre Avatar

      Hello Andy! Starting Facebook lead ads come with a lot of surprises! Better to be informed.

  6. Ernie Avatar

    Hi Martin – Uggghhhh, trolls! I won’t even capitalize that word. Thank you for these great reminders and tips. I especially like how you show how to ID possible trolls. These are especially helpful to me now that I am getting more of an online presence. Wishing you a great troll-free week!

    1. Martin Lefebvre Avatar

      Thank you Ernie! Glad you found some useful tips here. A troll-free week? I would not bet on this.

  7. Robert Klein Avatar

    On the topic of Phishing, I haven’t had anything online recently (knocking on wood). But with any directive from Meta, I go directly to the Meta Business Suite to verify the situation/message. If I don’t see it there I send the message directly to spam and be done with it.

    But I guess you have to know what to look for. And you do a good job of that with; 4 ways to spot phishing emails; and 4 ways to stand on guard for fraudulent Facebook comments.

Leave a Reply

Your email address will not be published. Required fields are marked *

CommentLuv badge