Action Fraud, the UK’s national reporting centre for fraud and cybercrime, has received multiple reports (including one in Oakham) of
Snapchat and Instagram users reporting their accounts being compromised after handing over their 2FA codes to fraudsters.
Two Factor Authentication – or 2FA – adds an extra layer of security for login details.
Besides entering your typical password, when 2FA is enabled a secret code is sent to a user’s device via an SMS.
This also needs to be entered to have access to a user’s account.
Cyber crooks have then threatened victims with having their personal photos shared publicly unless they send them money.
Advising Instagram and Snapchat fans on how to stay safe, Action Fraud said: “Don’t respond to messages that ask for your login details or two-factor authentication (2FA) codes.
The scam sees Instagram users receiving messages from followers saying they’ve somehow ended up on something called the ‘Nasty List’.
Messages will have an embedded link and look something like this: “OMG your actually on here, @TheNastyList_xx, your number is 26! its really messed up.”
When Instagram users click on the Nasty List profile link it leads them to a page which claims it will let the user see everyone on this alleged mystery list.
However, to do so they are asked to provide their Instagram username and password.
If you have fallen victim to a scam of this type please report it to:
Please take care.