With Facebook threat analyst Ryan McGeehan, having already admitted that phishing attacks are practically a humdrum occurrence at the social networking site, a fresh round of attacks was unleashed on Wednesday, posing a threat to users’ names and passwords yet again!

The modus operandi of the latest phishing attacks goes thus: users receive bogus e-mail messages, which seemingly look to be from Facebook, aimed at sending them to malicious Web sites - like Fbaction.net or Fbstarter.com - that look quite like the log-in page of the Facebook site.

According to a Facebook spokesman, though the Fbaction.net Web site was live Wednesday afternoon, Facebook is endeavoring to blacklist the domain, looking for the shutting down of the site. Acknowledging the phishing attack, Facebook said in its statement: “We are aware of this phishing domain and have already begun to take action.”

McGeehan has also said that “firm steps” are being taken by Facebook to deter further attacks, by running a script to “remove and clean” traces of the phishing. Facebook also banks on security firm MarkMonitor to undertake clean-up at different servers, and chase the domain registrars to seek the shutting down of the recognized phishing sites. In addition, at the browser level, supplying blacklists to Google and Microsoft also helps in blocking the phishing fraud sites!