You're only pretending to be my friend
August 31, 2012 12:10 PM Subscribe
For the past week or so I have been receiving phishing emails at my non-Facebook email account which appear to be from my Facebook friends. The sender's name is one of my Facebook friends, but the email addresses are not their real email address. The subject line reads FOR (MY FIRST NAME) and the message contains a link (which I never click, of course). Clearly there has been some access to my friend list and my email address. I am not using any apps on Facebook, and never give apps access to my info—my privacy settings are pretty locked down, or so I thought. Facebook is absolutely no help on this. I can't find a way to even report this to them because their reporting mechanism asks for links and there are none. I've changed my password, and locked down my privacy settings even more. Any ideas about how this happened and how to fix the security hole?