1. MidnightinGotham's Avatar
    I’ll try to keep this short. Had setup two factor authentication for FB, a month or so later I forgot I had done this and found my number in Facebook so I deleted the number.

    Did a reset on my phone, had to re-login to FB and not getting the SMS code (since I had removed my phone number).

    Attempted to reach out to Facebook and follow their recovery steps. One option is to upload a photo of your ID (which I did, in retrospect not the smartest but I blacked out everything with markup on my phone except name and photo) and I did get an email back from them - one saying my ID didn’t upload so I resent the picture and others (again I submitted multiple times since I didn’t hear anything) and those gave me one time passwords which I hand typed and did work. To me that seems legitimate (especially since I initiated).

    My questions:

    Anyone dealt with this and actually gotten back into their account?

    The emails come from @support.facebook.com which from their site is a legitimate domain but I still don’t like it. They are plain text with no Facebook letterhead but my understanding is that the domain name of an email is a good sign of its legitimacy. Thoughts?

    I’m assuming the risk is pretty minimal with the ID being sent because it’s just name and a photo - one could get that with a google search. I don’t like putting any more info out than necessary but I like having Facebook to stay in contact with people.

    Thanks
    Wotchered likes this.
    03-26-2018 10:31 AM
  2. Sherry_B's Avatar
    The emails come from @support.facebook.com which from their site is a legitimate domain but I still don’t like it. They are plain text with no Facebook letterhead but my understanding is that the domain name of an email is a good sign of its legitimacy. Thoughts?

    Never base your trust on a letterhead or lack thereof. How to read and understand email headers.
    03-26-2018 11:24 AM
  3. MidnightinGotham's Avatar
    Never base your trust on a letterhead. How to read and understand email headers.
    Agreed, letterhead can be easily faked. It was just interesting as other real emails from Facebook have a letterhead and these don’t. But apparently the email domain is real (and that I can see from the actual address it was sent from and not the header).
    03-26-2018 11:27 AM
  4. Sherry_B's Avatar
    Agreed, letterhead can be easily faked. It was just interesting as other real emails from Facebook have a letterhead and these don’t. But apparently the email domain is real (and that I can see from the actual address it was sent from and not the header).

    The header will always show the real email address. Anyone can spoof the From field to show any email address they want. I merely shared it with you so that you can view the headers and verify the legitimacy of the email source.
    03-26-2018 11:36 AM
  5. MidnightinGotham's Avatar
    The header will always show the real email address. Anyone can spoof the From field to show any email address they want. I merely shared it with you so that you can view the headers and verify the legitimacy of the email source.
    I just checked the full header and it shows the @support.facebook.com so I think it should be legit.

    When you say people can spoof the from field, if I tap on the email and the “from” on my iPhone where it brings up the full address, this can be spoofed or is that coming from the read header?
    03-26-2018 11:54 AM
  6. Sherry_B's Avatar
    I just checked the full header and it shows the @support.facebook.com so I think it should be legit.

    When you say people can spoof the from field, if I tap on the email and the “from” on my iPhone where it brings up the full address, this can be spoofed or is that coming from the read header?

    Any part of it can be spoofed, with the exception of the received from (the header area where it looks like a bunch of goblety gook code). You have to find the originating IP address and then trace that. Read a few of those articles for a better explanation.

    I use to have a nice tutorial for my web hosting clients in their cPanels, but I lost my writeup sometime after I retired from the business.
    03-26-2018 12:32 PM
  7. MidnightinGotham's Avatar
    It looks like @support.facebook.com is a legitimate email domain from Facebook and it does look like from viewing the header that it did come from this address (before the @ it looks like a case number/code) and the domain it says is Facebook.com.

    Anyone else that has experience with this or can tell me if this is legitimate?
    03-26-2018 06:46 PM
  8. MidnightinGotham's Avatar
    I setup a new account and tested the same thing and got an email from the same domain. So I think it’s safe to say this is legitimate.
    03-27-2018 10:17 AM

Similar Threads

  1. Weird Issue
    By chippy19977 in forum iPad (9.7-inch 2017)
    Replies: 9
    Last Post: 05-13-2018, 09:24 AM
  2. iPhone protected you from Facebook call scraping. Android not so much.
    By iMore.com in forum iMore.com News Discussion
    Replies: 1
    Last Post: 03-25-2018, 08:07 AM
  3. Facebook CEO Mark Zuckerberg addresses Cambridge Analytica scandal
    By iMore.com in forum iMore.com News Discussion
    Replies: 1
    Last Post: 03-23-2018, 05:00 PM
  4. Performance issue in finder window in High Sierra
    By mikerard in forum macOS High Sierra
    Replies: 2
    Last Post: 03-23-2018, 11:15 AM
  5. Facebook alternatives for keeping in touch with friends
    By iMore.com in forum iMore.com News Discussion
    Replies: 0
    Last Post: 03-23-2018, 07:50 AM
LINK TO POST COPIED TO CLIPBOARD