New Facebook Phishing scam found
After the login information is entered the next screen says that the account needs additional verification and to please enter a credit card number so you will continue to be able to purchase Facebook credits.
When an account is breached the worm will change the profile picture to the Facebook logo and the contact name to “Facebook Security”, the worm will then attempt to send messages to all of the contacts in your address book posing as the security team and stating that their account will be closed if they do not verify their login information by clicking a link provided.
As a reminder, if so get a popup that looks like this do not click the link. Facebook scams are getting more advanced with every new version so its getting harder to tell the legitimate messages from the fake ones. Be sure to let your Facebook friends know about this so they don’t don’t for it because if they do you may get a message from their compromised account!
Facebook has responded to the notice and has stated that they take security very seriously and are looking into the issue.
Additional Facebook security information can be found here: http://www.facebook.com/security
The original post by Kaspersky can be found here: http://www.securelist.com/en/blog/208193325/Facebook_Security_Phishing_Attack_In_The_Wild