Hacked Account Spam

post by jefftk (jkaufman) · 2023-02-02T01:50:01.738Z · LW · GW · 5 comments

Contents

5 comments

Whenever I post something publicly on Facebook mentioning hacking I get a ton of spammy comments:

This first happened with my not-actually-deepfake phishing post, and then again on my posts on not getting hacked and how likely Google lockouts are.

It sounds like there's a business in helping (or scamming) people who've had their Facebook/Instagram accounts hacked?

I've reported 42 of the comments as spam, and deleted dozens more (reporting spam takes several more clicks than deleting, and then you need to delete the comment anyway). Facebook doesn't seem to be getting any better at blocking them.

One of the more frustrating things about this, however, is that Facebook does seem to recognize these as spammy, and so doesn't notify me about them. Which is not what I want: it means my friends still see them on my posts, and I'm reliant on them to let me know about the comments so I can delete.

Comment via: facebook, mastodon

5 comments

Comments sorted by top scores.

comment by Viliam · 2023-02-02T09:36:44.011Z · LW(p) · GW(p)

Facebook completely sucks at removing even the most obvious spam. It also disincentivizes reporting -- as you mentioned, reporting spam takes many clicks and the probability of a useful outcome is low, while blocking only takes a few clicks and solves the problem of the specific spammer forever, but only for you.

By "even the most obvious spam" I mean something like:

  • the only English comment in a non-English thread, often in a non-English discussion group;
  • on a completely unrelated topic, e.g. asking people to click on something;
  • several identical copies posted in the same comment thread (e.g. someone posts something, they get five replies, and this spam is posted as a reply to each of the five replies);

...shortly, something that anyone with IQ 80 would immediately recognize as a spam even if they couldn't speak the language...

And yet, whenever I report it, it takes dozen clicks, then I get a notification "we have received your report", and the next day I get a notification "we have examined your report and concluded that the reported comment does not violate our community guidelines".

I strongly doubt that any human has ever seen the report. Most likely the entire thing is automated, and it probably takes many reports of the same content to make someone actually look at it. But given how many clicks it requires to report a spam, most people don't bother.

According to some metric, this is probably a great success. I imagine something like: "Since the introduction of our Great Anti-Spam Algorithm 3.0, the number of reported spams has decreased by 93%, it clearly works!"

Replies from: ChristianKl
comment by ChristianKl · 2023-02-02T11:03:48.995Z · LW(p) · GW(p)

Yes, it's amazing how bad Facebook is at spam detection. 

There was a time when I was getting a personal message per day that produced a notification containing spam from people I don't know. At the same time actually important messages, like a journalist wanting to contact me were often sorted in a way that produces no notification/message and needs clicking on "messages requests".

I feel like in the last year I have gotten less spam so they are improving somewhat but it's still not a good state of affairs. 

...shortly, something that anyone with IQ 80 would immediately recognize as a spam even if they couldn't speak the language...

And yet, whenever I report it, it takes dozen clicks, then I get a notification "we have received your report", and the next day I get a notification "we have examined your report and concluded that the reported comment does not violate our community guidelines".

I have a vague memory that might or might not be true that the people humans that do the spam review don't see the context of the message.

Replies from: Viliam
comment by Viliam · 2023-02-02T14:11:49.750Z · LW(p) · GW(p)

I have a vague memory that might or might not be true that the people humans that do the spam review don't see the context of the message.

That would explain a thing or two.

I suppose, from Facebook's perspective, banning is the right thing (because it costs them nothing). Everyone moderates their own statuses; groups are moderated by their admins.

The report functionality is probably there only for political reasons: yes it exists, and yes it can remove porn or literally Nazi messages (at least the ones written in English).

comment by JesperO · 2023-02-02T14:04:14.561Z · LW(p) · GW(p)

Presumably the reason for such spam is that someone who's already been hacked once is more likely to be an easy target.

comment by jefftk (jkaufman) · 2023-02-02T16:11:04.096Z · LW(p) · GW(p)

If you want to see live examples I haven't been deleting the ones I'm getting on the fb post.