FreeFire NewEven phishing page with fake Facebook Login-window detected

Posted byAnti-phishing Leave a comment on FreeFire NewEven phishing page with fake Facebook Login-window detected

This screenshot shows a phishing page that uses a fake “Free Fire New Event” as a lure to trick victims into logging in with Facebook. The page mimics the Facebook login interface to steal the victim’s credentials.

Threat Analysis: Free Fire Event Phishing – Facebook Credential Harvesting

How it works:
The victim receives a link (via social media, SMS, or messaging app) promising exclusive rewards or access to a new event for the game Free Fire. The link leads to a page that claims the victim must log in with their Facebook account to participate. The page asks for:

  • Mobile number or email address
  • Password

After the victim enters their credentials and clicks “Log In,” the information is sent to the attacker. The victim may then be redirected to the real Free Fire or Facebook website, making the scam less noticeable.

The goal:
The attacker steals Facebook credentials to:

  • Take over the victim’s Facebook account
  • Access the linked Free Fire (Garena) game account and steal or sell it
  • Post spam, scams, or malicious links from a trusted account
  • Attempt credential reuse on other platforms (email, banking, etc.)

Red flags to watch for:

  • Suspicious URL: The page is hosted on a domain that is not facebook.com or freefire.com. Legitimate Facebook login pages are only on official Facebook domains.
  • Free Fire event lure: Garena does not require you to log in via an external link to access events – all in‑game events are accessed directly through the Free Fire app.
  • Login page on a third‑party site: A legitimate event would either take place inside the game or on an official Garena website, not on a page that asks for Facebook credentials.
  • Unsolicited offer: Any unsolicited message promising free in‑game rewards in exchange for logging in via a link is almost certainly a scam.

What to do if you encounter this:

  • Do not enter your Facebook email/phone or password.
  • If you have already entered your credentials, change your Facebook password immediately and enable two‑factor authentication (2FA). Also check your Free Fire account for unauthorized access.
  • Always access Free Fire events through the official game app – never through external links.
  • Report the phishing page to Facebook and to Garena.

Protective measures:

  • Bookmark the official Facebook login page and use that bookmark.
  • Use a password manager – it will not autofill on fake domains.
  • Enable two‑factor authentication on your Facebook account.
  • Be suspicious of any message that asks you to log in to claim game rewards.

Leave a comment

Your email address will not be published. Required fields are marked *