Sponsored Links

Facebook lists all the security emails it sends to fight phishing

If that password change email smells fishy, check the list first.
Getty Images
Getty Images
Mariella Moon
Mariella Moon|@mariella_moon|December 20, 2017 11:00 AM

Your Facebook account might not have your credit card or bank details, but it could have everything a crook needs to get them. To protect you from phishing schemes designed to steal Facebook log-ins, the platform is arming you with information that can be easily accessed in the settings page. The social network now lists the latest security emails it sends out. Every time you get message in your inbox asking you to change your password or email -- and it smells fishy for some reason -- you can check the list first and verify that it's really from the company.

Facebook typically uses addresses ending in "@facebookmail.com" for its security emails, but as you know, phishers can spoof accounts and make their messages look legit. If you miss the flaws and irregularities that usually give phishing schemes away, such as spelling and grammar mistakes, then you really might fall victim to them. Of course, you'd have to make sure you're visiting the real Facebook website whenever you want to access the list, so you'll still have to make it a habit to open a fresh tab and type the URL yourself.

Found an email not in the list? Facebook is encouraging you to report it to phish@fb.com.

Turn on browser notifications to receive breaking news alerts from Engadget
You can disable notifications at any time in your settings menu.
Not now

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission. All prices are correct at the time of publishing.
Facebook lists all the security emails it sends to fight phishing